Visual Studio Code Copilot Chat Extension CVEs and Security Vulnerabilities - OpenCVE

Filtered by vendor Microsoft Subscriptions

Filtered by product Visual Studio Code Copilot Chat Extension Subscriptions

Search

Switch to Advanced Search (Beta)

Total 2 CVE

CVE	Vendors	Products	Updated	CVSS v3.1
CVE-2025-62449	1 Microsoft	2 Visual Studio, Visual Studio Code Copilot Chat Extension	2025-11-12	6.8 Medium
Improper limitation of a pathname to a restricted directory ('path traversal') in Visual Studio Code CoPilot Chat Extension allows an authorized attacker to bypass a security feature locally.
CVE-2025-62222	1 Microsoft	2 Visual Studio, Visual Studio Code Copilot Chat Extension	2025-11-12	8.8 High
Improper neutralization of special elements used in a command ('command injection') in Visual Studio Code CoPilot Chat Extension allows an unauthorized attacker to execute code over a network.

Page 1 of 1.