CVE-2026-40376 Visual Studio Code Elevation of Privilege Vulnerability

...

CVE-2026-47292

CVE-2026-47292 concerns a vulnerability in the Visual Studio Code MSSQL Extension where inclusion of functionality from an untrusted control sphere allows an attacker to escalate privileges locally. The connected documents confirm the affected product (Visual Studio Code MSSQL Extension) and the ...

CVE-2026-47292 Visual Studio Code MSSQL Extension Remote Code Execution Vulnerability

...

CVE-2026-47292 Visual Studio Code MSSQL Extension Remote Code Execution Vulnerability

...

CVE-2026-47287 Visual Studio Code Tampering Vulnerability

...

CVE-2026-47287

CVE-2026-47287 affects Visual Studio Code. The provided documents describe a relative path traversal vulnerability that could allow tampering over a network. Per CVSS data, the attack vector is NETWORK with no privileges required but user interaction is required, and the impact includes high inte...

CVE-2026-47287 Visual Studio Code Tampering Vulnerability

...

Visual Studio Code Information Disclosure Vulnerability

Exposure of sensitive information to an unauthorized actor in Visual Studio Code allows an unauthorized attacker to disclose information over a network...

Microsoft Visual Studio Code CoPilot Chat Security Feature Bypass Vulnerability

Improper limitation of a pathname to a restricted directory 'path traversal' in GitHub Copilot and Visual Studio Code allows an unauthorized attacker to bypass a security feature locally...

Visual Studio Code Security Feature Bypass Vulnerability

Improper input validation in Visual Studio Code allows an unauthorized attacker to bypass a security feature locally...

Visual Studio Code Elevation of Privilege Vulnerability

Improper input validation in Visual Studio Code allows an unauthorized attacker to elevate privileges over a network...

Visual Studio Code MSSQL Extension Remote Code Execution Vulnerability

Inclusion of functionality from untrusted control sphere in Visual Studio Code allows an unauthorized attacker to elevate privileges locally...

Visual Studio Code Tampering Vulnerability

Relative path traversal in Visual Studio Code allows an unauthorized attacker to perform tampering over a network...

Visual Studio Code Elevation of Privilege Vulnerability

Improper input validation in Visual Studio Code allows an unauthorized attacker to elevate privileges over a network...

2625

LogSentinel – Intelligent Web Log Security Analysis Platform...

PT-2026-48021

Name of the Vulnerable Software and Affected Versions Visual Studio Code versions prior to 1.123.1 Description Exposure of sensitive information to an unauthorized actor allows an attacker to disclose information over a network. Recommendations Update to version 1.123.1 or later...

PT-2026-47964

Improper limitation of a pathname to a restricted directory 'path traversal' in GitHub Copilot and Visual Studio Code allows an unauthorized attacker to bypass a security feature locally...

PT-2026-48106

Improper input validation in Visual Studio Code allows an unauthorized attacker to bypass a security feature locally...

PT-2026-47869

Improper input validation in Visual Studio Code allows an unauthorized attacker to elevate privileges over a network...

PT-2026-48020

Name of the Vulnerable Software and Affected Versions Visual Studio Code affected versions not specified Microsoft Defender affected versions not specified Description Improper input validation in Visual Studio Code allows an unauthorized attacker to elevate privileges over a network. Additionall...