Microsoft Github_copilot

3 CVEs affecting Microsoft Github_copilot. Latest disclosed: 2026-06-22. Critical: 0, High: 3.

Top CVEs affecting Microsoft Github_copilot
CVESeverityScorePublishedSummary
CVE-2026-21516High8.82026-02-10Improper neutralization of special elements used in a command ('command injection') in Github Copilot allows an unauthorized attacker to execute code over a ne…
CVE-2025-64671High8.42025-12-09Improper neutralization of special elements used in a command ('command injection') in Copilot allows an unauthorized attacker to execute code locally.
CVE-2025-66389High7.52026-06-22GitHub Copilot 1.372.0 allows filesystem access outside of a workspace folder (without user approval) via a file-handler URI parameter to fetch_webpage. Theref…