Security Advisory

CVE-2026-21257

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-02-10 17:51:37

Last updated 2026-05-11 21:25:38

Assigner microsoft

State PUBLISHED

Description

Improper neutralization of special elements used in a command (command injection) in GitHub Copilot and Visual Studio allows an authorized attacker to elevate privileges over a network.

← Browse all CVEs View on cve.org ↗