Spectra Assure
Community
warningRisk: Tampering
Scanned: 13 days ago

C/C++

Artifact:
key project
Top 10
C/C++ IntelliSense, debugging, and code browsing.
License: unknown
Published: 9 months ago
Publisher: ms-vscode
Visit GitHub
See on Visual Studio Code

SAFE Assessment

Compliance

Licenses
No license compliance issues
Secrets
2 debugging symbols found

Security

Vulnerabilities
9 high severity vulnerabilities
Hardening
10 reduced effectiveness mitigations

Threats

Tampering
1 components with malware history
Malware
No evidence of malware inclusion
List of known vulnerabilities affecting the software package and the components it embeds. Last refreshed on: 2025/12/08
All detected vulnerabilities are fixable
Run the update/upgrade command in your package manager to resolve the detected vulnerabilities
CVSS Score
CVE
Name
Tags
high
8.8
CVE-2025-21176
Fix Available
high
8.1
CVE-2024-38229
Fix Available
high
8.0
CVE-2025-26646
Fix Available
high
7.5
CVE-2024-43483
Fix Available
high
7.5
CVE-2024-43484
Fix Available
high
7.5
CVE-2024-43485
Fix Available
high
7.5
CVE-2025-21172
Fix Available
high
7.5
CVE-2025-30399
Fix Available
high
7.3
CVE-2025-21173
Fix Available

Did you know...

... that you can use ReversingLabs’ Spectra Assure platform to perform regular risk assessments of packages you develop in-house?

We recommend continuous software safeness monitoring through CI/CD integrations and pre-release/deployment checks. In addition to basic package information found on this page our platform offers rich reports for developers and DevSecOps that help them remediate all reported issues.