GitHub Copilot: Remote code execution via prompt injection (CVE-2025-53773) (opens in new tab)

(embracethered.com)

15 pointskerng7mo ago2 comments

2 comments

This CVE is confusing, all the articles indicate this affects Visual Studio Code, but the CVE makes no reference to Code, only Visual Studio proper.

Which version of VS Code fixes this? Microsoft only mentioned Visual Studio 2022.

j / k navigate · click thread line to collapse

(embracethered.com)

15 pointskerng7mo ago2 comments

Soliah7mo ago

This CVE is confusing, all the articles indicate this affects Visual Studio Code, but the CVE makes no reference to Code, only Visual Studio proper.

Which version of VS Code fixes this? Microsoft only mentioned Visual Studio 2022.

j / k navigate · click thread line to collapse