Known vulnerabilities in Microsoft Microsoft Visual Studio Code CoPilot Chat Extension

Vendor: Microsoft

Website: https://www.microsoft.com

Total Security Bulletins: 3

Security bulletins (3)

Secuity bulletin	Severity	Status	Published
SB2026041616: Command Injection in Microsoft Visual Studio Code CoPilot Chat Extension	Medium	Patched	16.04.2026
SB2025111193: Command Injection in Microsoft Agentic AI and Visual Studio Code	High	Patched	11.11.2025
SB2025111158: Path traversal in Microsoft Visual Studio Code CoPilot Chat Extension	Low	Patched	11.11.2025