Description
Improper limitation of a pathname to a restricted directory ('path traversal') in GitHub Copilot and Visual Studio Code allows an unauthorized attacker to bypass a security feature locally.
Published: 2026-06-09
Score: 8.4 High
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

The vulnerability involves an improper limitation of a pathname to a restricted directory, allowing a path traversal flaw in the GitHub Copilot and Visual Studio Code Copilot Chat Extension. An attacker who can access the local environment of the extension can exploit this flaw to bypass a security feature that is intended to restrict file system access. The flaw does not allow remote code execution but can undermine the integrity of the local development environment, potentially allowing read or modification of files outside the intended sandbox.

Affected Systems

Microsoft Visual Studio Code Copilot Chat Extension is affected. No specific versions are listed; the issue applies to any instance of the extension that has not been updated to a version containing the fix.

Risk and Exploitability

The CVSS score of 8.4 indicates a high severity of the vulnerability. Because the EPSS score is not available, the exploitation likelihood cannot be quantified, and the vulnerability is not listed in the CISA KEV catalog. The attack vector appears to be local, requiring the attacker to be able to run or install the vulnerable extension within a user’s environment. Once the extension is enabled, the path traversal flaw can be triggered by manipulating file paths supplied to the extension, thereby subverting the intended directory restrictions.

Generated by OpenCVE AI on June 9, 2026 at 19:04 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade the Copilot Chat Extension to the latest version that includes the containment fix
  • If an upgrade is not yet available, uninstall or disable the Copilot Chat Extension until a patched release is issued
  • Restrict file system permissions to the directories used by the extension, ensuring that only trusted users can modify or access files outside the allowed scope

Generated by OpenCVE AI on June 9, 2026 at 19:04 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Wed, 10 Jun 2026 11:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}

Tue, 09 Jun 2026 17:15:00 +0000

Type Values Removed Values Added
Description Improper limitation of a pathname to a restricted directory ('path traversal') in GitHub Copilot and Visual Studio Code allows an unauthorized attacker to bypass a security feature locally.
Title Microsoft Visual Studio Code CoPilot Chat Extension Security Feature Bypass Vulnerability
First Time appeared Microsoft
Microsoft visual Studio Code Copilot Chat Extension
Weaknesses CWE-22
CPEs cpe:2.3:a:microsoft:visual_studio_code_copilot_chat_extension:*:*:*:*:*:*:*:*
Vendors & Products Microsoft
Microsoft visual Studio Code Copilot Chat Extension
References
Metrics cvssV3_1

{'score': 8.4, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C'}

Subscriptions

Microsoft Visual Studio Code Copilot Chat Extension
cve-icon MITRE

Status: PUBLISHED

Assigner: microsoft

Published:

Updated: 2026-06-10T10:19:54.786Z

Reserved: 2026-05-12T16:07:22.617Z

Link: CVE-2026-45482

cve-icon Vulnrichment

Updated: 2026-06-10T10:19:50.160Z

cve-icon NVD

Status : Awaiting Analysis

Published: 2026-06-09T17:17:22.587

Modified: 2026-06-09T19:32:51.440

Link: CVE-2026-45482

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-06-09T21:00:07Z

Weaknesses