{"@odata.context":"https://api.msrc.microsoft.com/sug/v2.0/en-US/$metadata#vulnerability/$entity","id":"00000000-0000-0000-0000-00006d5428d5","releaseDate":"2021-06-08T07:00:00Z","cveNumber":"CVE-2021-31938","cveTitle":"Microsoft VsCode Kubernetes Tools Extension Elevation of Privilege Vulnerability","releaseNumber":"2021-Jun","vulnType":"Security Vulnerability","latestRevisionDate":"2021-06-08T07:00:00Z","cweList":[],"mitreText":"CVE-2021-31938","mitreUrl":"https://www.cve.org/CVERecord?id=CVE-2021-31938","publiclyDisclosed":"No","exploited":"No","latestSoftwareReleaseId":2,"latestSoftwareRelease":"Exploitation Less Likely","olderSoftwareReleaseId":2,"olderSoftwareRelease":"Exploitation Less Likely","denialOfService":"N/A","tag":"Visual Studio Code - Kubernetes Tools","issuingCna":"Microsoft","severityId":100000001,"severity":"Important","impactId":100000002,"impact":"Elevation of Privilege","langCode":"en-US","baseScore":"7.3","temporalScore":"6.4","vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C","isMariner":false,"articles":[{"articleType":"FAQ","description":"
According to the CVSS metric, user interaction is required (UI:R). What interaction would the user have to do?
\nExploitation of this vulnerability requires that a user install the Visual Studio Code Kubernetes Tools extension or operate Visual Studio Code using that extension.
\n","ordinal":10000}],"revisions":[{"cveNumber":"CVE-2021-31938","version":1.0000000000,"revisionDate":"2021-06-08T07:00:00Z","initialDate":"0001-01-01T00:00:00Z","description":"Information published.
\n","unformattedDescription":"Information published.","notificationNeeded":false,"notificationSent":false,"sourceId":"48f04302-c5b1-eb11-a83e-000d3a6d3364"}]}