Feb 2025: Visual Studio Code JS Debug Extension Elevation of Privilege Vulnerability
CVE-2025-24042 Published on February 11, 2025

Visual Studio Code JS Debug Extension Elevation of Privilege Vulnerability
Visual Studio Code JS Debug Extension Elevation of Privilege Vulnerability

Vendor Advisory NVD

Weakness Type

What is an Authorization Vulnerability?

The software does not restrict or incorrectly restricts access to a resource from an unauthorized actor.

CVE-2025-24042 has been classified to as an Authorization vulnerability or weakness.

Products Associated with CVE-2025-24042

stack.watch emails you whenever new vulnerabilities are published in Microsoft Visual Studio Code or Microsoft Vscode Js Debug. Just hit a watch button to start following.

Microsoft Visual Studio Code

Microsoft Vscode Js Debug

Affected Versions

Microsoft Visual Studio Code - JS Debug Extension:

Version 1.0.0 and below 1.97.1 is affected.

Exploit Probability

EPSS

0.23%

Percentile

45.92%