High severity7.5NVD Advisory· Published Apr 1, 2021· Updated Jun 17, 2026
CVE-2021-21420
CVE-2021-21420
Description
vscode-stripe is an extension for Visual Studio Code. A vulnerability in Stripe for Visual Studio Code extension exists when it loads an untrusted source-code repository containing malicious settings. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. The update addresses the vulnerability by modifying the way the extension validates its settings.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2(expand)+ 1 more
- (no CPE)
- (no CPE)range: < 1.7.3
Patches
Vulnerability mechanics
References
1- github.com/stripe/vscode-stripe/security/advisories/GHSA-j6x4-4622-8vv3nvdThird Party Advisory
News mentions
0No linked articles in our index yet.