Vulnerabilities
Vulnerable Software
Initialization of a resource with an insecure default in GitHub Copilot and Visual Studio Code allows an unauthorized attacker to disclose information over a network.
CVSS Score
6.5
EPSS Score
0.005
Published
2026-06-19
Improper neutralization of special elements used in a command ('command injection') in GitHub Copilot and Visual Studio Code allows an authorized attacker to disclose information over a network.
CVSS Score
5.7
EPSS Score
0.007
Published
2026-04-14
Improper limitation of a pathname to a restricted directory ('path traversal') in Visual Studio Code CoPilot Chat Extension allows an authorized attacker to bypass a security feature locally.
CVSS Score
6.8
EPSS Score
0.005
Published
2025-11-11
Improper neutralization of special elements used in a command ('command injection') in Visual Studio Code CoPilot Chat Extension allows an unauthorized attacker to execute code over a network.
CVSS Score
8.8
EPSS Score
0.007
Published
2025-11-11


Contact Us

Shodan ® - All rights reserved