CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

130 matches found

Positive Technologies•added 2026/02/10 12:0 a.m.•5 views

PT-2026-7403

Name of the Vulnerable Software and Affected Versions GitHub Copilot VS Code extension versions prior to the February 2026 security fix Visual Studio Code versions affected versions not specified Description A command injection flaw exists in GitHub Copilot for Visual Studio Code, allowing...

8.8CVSS6.3AI score0.0007EPSS

Exploits0References8

Positive Technologies•added 2026/02/10 12:0 a.m.•2 views

PT-2026-7359

Name of the Vulnerable Software and Affected Versions GitHub Copilot and Visual Studio affected versions not specified Description The software contains a command injection issue due to improper neutralization of special elements used in commands. A successful exploit could allow an authorized...

9CVSS5.8AI score0.00047EPSS

Exploits0References5

Positive Technologies•added 2026/02/10 12:0 a.m.•3 views

PT-2026-7401

Name of the Vulnerable Software and Affected Versions Github Copilot affected versions not specified Description A command injection issue exists in Github Copilot. This allows a remote, unauthorized attacker to execute code over a network. The issue is related to a failure to sanitize data at th...

10CVSS6.1AI score0.0003EPSS

Exploits0References4

Kaspersky•added 2026/02/10 12:0 a.m.•0 views

KLA90877 ACE vulnerability in Microsoft Copilot Plugin

A remote code execution vulnerability was found in Microsoft Copilot Studio. Malicious users can exploit this vulnerability to execute arbitrary code, bypass security restrictions. Original advisories CVE-2026-21516 Exploitation Related products GitHub-Copilot-Plugin CVE list CVE-2026-21516...

8.8CVSS6.5AI score0.0003EPSS

Exploits0References3

CNNVD•added 2026/02/10 12:0 a.m.•1 views

Microsoft GitHub Copilot and Visual Studio 代码注入漏洞

Microsoft GitHub Copilot and Visual Studio are generative AI tools developed by the American company Microsoft. There is a code injection vulnerability in Microsoft GitHub Copilot and Visual Studio. Attackers can exploit this vulnerability to execute code remotely. The following products and...

8.8CVSS6AI score0.00046EPSS

Exploits0References1

CNNVD•added 2026/02/10 12:0 a.m.•2 views

Microsoft GitHub Copilot and Visual Studio 安全漏洞

Microsoft GitHub Copilot and Visual Studio are generative AI tools developed by the American company Microsoft. There are security vulnerabilities in Microsoft GitHub Copilot and Visual Studio. Attackers can exploit these vulnerabilities to execute code remotely...

8CVSS6AI score0.00035EPSS

Exploits0References1

Positive Technologies•added 2026/02/10 12:0 a.m.•3 views

PT-2026-7358

Name of the Vulnerable Software and Affected Versions GitHub Copilot and Visual Studio affected versions not specified Description A flaw exists in the code generation management of the software development tool. Successful exploitation could allow a remote attacker to execute arbitrary code. Thi...

10CVSS5.9AI score0.00046EPSS

Exploits0References6

CNNVD•added 2026/02/10 12:0 a.m.•2 views

Microsoft GitHub Copilot and Visual Studio 命令注入漏洞

Microsoft GitHub Copilot and Visual Studio are generative AI tools developed by the American company Microsoft. There are command injection vulnerabilities in Microsoft GitHub Copilot and Visual Studio. Attackers can exploit these vulnerabilities to gain higher privileges. The following products...

8CVSS5.8AI score0.00047EPSS

Exploits0References1

GithubExploit•added 2026/02/02 9:22 a.m.•135 views

spec-driven-workflow-poc

Steps for AI setup 1. Create .github folder in the root of th...

5.4AI score

Exploits0

Packet Storm News•added 2025/12/18 12:0 a.m.•6 views

A Systematic Study of Code Obfuscation against LLM-Based Vulnerability Detection

As large language models LLMs are increasingly adopted for code vulnerability detection, their reliability and robustness across diverse vulnerability types have become a pressing concern. In traditional adversarial settings, code obfuscation has long been used as a general strategy to bypass...

7.2AI score

Exploits0

CVE•added 2025/12/09 5:56 p.m.•18 views

CVE-2025-64671

CVE-2025-64671 is a remote code execution vulnerability in the GitHub Copilot for JetBrains plugin caused by improper neutralization of command elements (command injection). The Nessus/NVL documentation indicates the issue affects versions prior to 1.5.60; upgrading to 1.5.60 or later is the reme...

8.4CVSS7.1AI score0.00137EPSS

Exploits0References1Affected Software1

Vulnrichment•added 2025/12/09 5:56 p.m.•1 views

CVE-2025-64671 GitHub Copilot for Jetbrains Remote Code Execution Vulnerability

...

8.4CVSS6.6AI score0.00137EPSS

Exploits0References1

Cvelist•added 2025/12/09 5:56 p.m.•18 views

CVE-2025-64671 GitHub Copilot for Jetbrains Remote Code Execution Vulnerability

...

8.4CVSS0.00137EPSS

Exploits0References1

Kaspersky•added 2025/12/09 12:0 a.m.•4 views

KLA90816 ACE vulnerability in Microsoft Copilot Plugin

A remote code execution vulnerability was found in Microsoft Copilot Studio. Malicious users can exploit this vulnerability to execute arbitrary code. Original advisories CVE-2025-64671 Related products GitHub-Copilot-Plugin CVE list CVE-2025-64671 critical KB list Solution Install necessary...

8.4CVSS8.7AI score0.00137EPSS

Exploits0References3

The Hacker News•added 2025/12/06 3:24 p.m.•10 views

Researcher Uncovers 30+ Flaws in AI Coding Tools Enabling Data Theft and RCE Attacks

Over 30 security vulnerabilities have been disclosed in various artificial intelligence AI-powered Integrated Development Environments IDEs that combine prompt injection primitives with legitimate features to achieve data exfiltration and remote code execution. The security shortcomings have been...

9.8CVSS8.7AI score0.06597EPSS

Exploits3