Microsoft · Visual Studio Code Live Share Extension · CVE-2020-1343
**Name of the Vulnerable Software and Affected Versions**
Visual Studio Code Live Share Extension (affected versions not specified)
**Description**
An information disclosure issue exists in Visual Studio Code Live Share Extension, where it exposes tokens in plain text. This could allow a remote attacker to gain unauthorized access to protected information by intercepting the token from the client to the server using a special server configuration.
**Recommendations**
At the moment, there is no information about a newer version that contains a fix for this vulnerability.