CNNVD-202511-1017 Information

CNNVD ID

CNNVD-202511-1017

Related CVE

CVE-2025-62449

• CNNVD Published: 2025-11-11

Description (Chinese)

Microsoft Visual Studio Code是美国微软（Microsoft）公司的一款开源的代码编辑器。 Microsoft Visual Studio Code CoPilot Chat Extension存在路径遍历漏洞。攻击者利用该漏洞可以绕过某些功能。

Description (English)

Microsoft Victoria Code is an open source code editor for Microsoft (MSC) in the United States. There is a loophole in the path of Microsoft Vital Studio Code CoPilot Chat Extension. The attackers used that loophole to circumvent certain functions.

Hazard Level

High

Vulnerability Type

路径遍历

Affected Vendor

微软

Published

2025-11-11

Last Modified

2026-02-24

References

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-62449

Patch

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-62449