CVE-2021-21420

Name of the Vulnerable Software and Affected Versions vscode-stripe (affected versions not specified)

Description A vulnerability exists in the Stripe for Visual Studio Code extension when it loads an untrusted source-code repository containing malicious settings. This could allow an attacker to run arbitrary code in the context of the current user. The issue is related to the extension's validation of its settings.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.