Lucene search
K

827 matches found

Microsoft Secure
Microsoft Secure
added 2026/02/12 8:38 p.m.11 views

Top 10 actions to build agents securely with Microsoft Copilot Studio

Organizations are rapidly adopting Copilot Studio agents, but threat actors are equally fast at exploiting misconfigured AI workflows. Mis-sharing, unsafe orchestration, and weak authentication create new identity and data‑access paths that traditional controls don’t monitor. As AI agents become...

6AI score
Exploits0
RedhatCVE
RedhatCVE
added 2026/02/11 7:45 p.m.4 views

CVE-2026-21518

Improper neutralization of special elements used in a command 'command injection' in GitHub Copilot and Visual Studio Code allows an unauthorized attacker to bypass a security feature over a network...

8.8CVSS5.6AI score0.01357EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/02/11 7:44 p.m.6 views

CVE-2026-21257

Improper neutralization of special elements used in a command 'command injection' in GitHub Copilot and Visual Studio allows an authorized attacker to elevate privileges over a network...

8CVSS5.6AI score0.00845EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/02/11 7:44 p.m.3 views

CVE-2026-21516

Improper neutralization of special elements used in a command 'command injection' in Github Copilot allows an unauthorized attacker to execute code over a network...

8.8CVSS5.8AI score0.0081EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/02/11 7:44 p.m.4 views

CVE-2026-21256

Improper neutralization of special elements used in a command 'command injection' in GitHub Copilot and Visual Studio allows an unauthorized attacker to execute code over a network...

8.8CVSS5.8AI score0.01101EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2026/02/11 12:0 a.m.5 views

GitHub Copilot for JetBrains < 1.5.63 Remote Code Execution (February 2026)

The GitHub Copilot for JetBrains plugin installed on the remote host is prior to version 1.5.63. It is, therefore, affected by a remote code execution vulnerability: - Improper neutralization of special elements used in a command 'command injection' in GitHub Copilot allows an unauthorized attack...

8.8CVSS6.5AI score0.0081EPSS
Exploits0References3
NCSC
NCSC
added 2026/02/10 7:7 p.m.39 views

Vulnerabilities fixed in Microsoft Developer Tools

Microsoft has fixed vulnerabilities in several Visual Studio and .NET components. A malicious party could exploit the vulnerabilities to bypass security measures, grant themselves elevated privileges and potentially execute arbitrary code with the victim's privileges. For successful abuse, the...

8.8CVSS6.5AI score0.01357EPSS
Exploits0
NVD
NVD
added 2026/02/10 6:16 p.m.10 views

CVE-2026-21518

Improper neutralization of special elements used in a command 'command injection' in GitHub Copilot and Visual Studio Code allows an unauthorized attacker to bypass a security feature over a network...

8.8CVSS0.01357EPSS
Exploits0References1
NVD
NVD
added 2026/02/10 6:16 p.m.6 views

CVE-2026-21523

Time-of-check time-of-use toctou race condition in GitHub Copilot and Visual Studio allows an authorized attacker to execute code over a network...

8CVSS0.00792EPSS
Exploits0References1
OSV
OSV
added 2026/02/10 6:16 p.m.5 views

CVE-2026-21518

Improper neutralization of special elements used in a command 'command injection' in GitHub Copilot and Visual Studio Code allows an unauthorized attacker to bypass a security feature over a network...

8.8CVSS5.6AI score0.01357EPSS
Exploits0References1
OSV
OSV
added 2026/02/10 6:16 p.m.6 views

CVE-2026-21523

Time-of-check time-of-use toctou race condition in GitHub Copilot and Visual Studio allows an authorized attacker to execute code over a network...

8CVSS5.8AI score0.00792EPSS
Exploits0References1
NVD
NVD
added 2026/02/10 6:16 p.m.9 views

CVE-2026-21516

Improper neutralization of special elements used in a command 'command injection' in Github Copilot allows an unauthorized attacker to execute code over a network...

8.8CVSS0.0081EPSS
Exploits0References1
OSV
OSV
added 2026/02/10 6:16 p.m.6 views

CVE-2026-21516

Improper neutralization of special elements used in a command 'command injection' in Github Copilot allows an unauthorized attacker to execute code over a network...

7.8CVSS5.9AI score0.0081EPSS
Exploits0References1
NVD
NVD
added 2026/02/10 6:16 p.m.5 views

CVE-2026-21256

Improper neutralization of special elements used in a command 'command injection' in GitHub Copilot and Visual Studio allows an unauthorized attacker to execute code over a network...

8.8CVSS0.01101EPSS
Exploits0References1
NVD
NVD
added 2026/02/10 6:16 p.m.4 views

CVE-2026-21257

Improper neutralization of special elements used in a command 'command injection' in GitHub Copilot and Visual Studio allows an authorized attacker to elevate privileges over a network...

8CVSS0.00845EPSS
Exploits0References1
OSV
OSV
added 2026/02/10 6:16 p.m.3 views

CVE-2026-21256

Improper neutralization of special elements used in a command 'command injection' in GitHub Copilot and Visual Studio allows an unauthorized attacker to execute code over a network...

8.8CVSS5.9AI score0.01101EPSS
Exploits0References1
OSV
OSV
added 2026/02/10 6:16 p.m.4 views

CVE-2026-21257

Improper neutralization of special elements used in a command 'command injection' in GitHub Copilot and Visual Studio allows an authorized attacker to elevate privileges over a network...

8CVSS5.8AI score0.00845EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/02/10 5:51 p.m.25 views

CVE-2026-21256 GitHub Copilot and Visual Studio Remote Code Execution Vulnerability

...

8.8CVSS0.01101EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/02/10 5:51 p.m.1 views

CVE-2026-21256

Improper neutralization of special elements used in a command 'command injection' in GitHub Copilot and Visual Studio allows an unauthorized attacker to execute code over a network...

8.8CVSS5.9AI score0.01101EPSS
Exploits0References2Affected Software2
Vulnrichment
Vulnrichment
added 2026/02/10 5:51 p.m.0 views

CVE-2026-21256 GitHub Copilot and Visual Studio Remote Code Execution Vulnerability

...

8.8CVSS5.3AI score0.01101EPSS
Exploits0References1
Rows per page
Query Builder