Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2026-50520

Improper neutralization of special elements used in a command ('command injection') in Visual Studio Code allows an unauthorized attacker to execute code locally.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 16.7%
CVSS Severity
CVSS v3 Score 8.4
Products affected by CVE-2026-50520


Contact Us

Shodan ® - All rights reserved