Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
MicrosoftGithub Copilot Chat*

4 matches found

CVE
CVEadded 2026/04/14 4:56 p.m.46 views

CVE-2026-23653

The CVE-2026-23653 vulnerability affects GitHub Copilot and the Visual Studio Code Copilot Chat Extension. It is described as an information disclosure caused by improper neutralization of special elements used in a command (command injection), potentially allowing an authorized user to disclose ...

6.5CVSS5.7AI score0.00739EPSS
CVE
CVEadded 2026/06/19 8:28 p.m.22 views

CVE-2026-50519

The CVE-2026-50519 entry concerns GitHub Copilot and Visual Studio Code where a resource initialized with an insecure default can allow an unauthorized attacker to disclose information over a network. Public sources (NVD) describe the impact as confidentiality compromise with network-exposed disc...

7.5CVSS5.8AI score0.00525EPSS
CVE
CVEadded 2025/11/11 5:59 p.m.18 views

CVE-2025-62449

The CVE-2025-62449 issue is a path traversal vulnerability in the Visual Studio Code CoPilot Chat Extension (prior to version 0.32.5). A local, low-privilege, authorized attacker can bypass a security feature and access files outside the intended workspace, with high impact to confidentiality and...

6.8CVSS5.4AI score0.0045EPSS
CVE
CVEadded 2025/11/11 5:59 p.m.14 views

CVE-2025-62222

The CVE-2025-62222 issue affects the Visual Studio Code CoPilot Chat Extension, with a command injection flaw caused by improper handling of special characters in user-controlled input. It enables remote code execution over the network when exploited against versions prior to 0.32.5. Mitigation: ...

8.8CVSS5.9AI score0.00719EPSS