Apr 2025: Visual Studio Code Elevation of Privilege Vulnerability
CVE-2025-32726 Published on April 12, 2025

Visual Studio Code Elevation of Privilege Vulnerability
Improper access control in Visual Studio Code allows an authorized attacker to elevate privileges locally.

Vendor Advisory NVD

Weakness Type

What is an Authorization Vulnerability?

The software does not restrict or incorrectly restricts access to a resource from an unauthorized actor.

CVE-2025-32726 has been classified to as an Authorization vulnerability or weakness.

Products Associated with CVE-2025-32726

Want to know whenever a new CVE is published for Microsoft Visual Studio Code? stack.watch will email you.

Microsoft Visual Studio Code

Affected Versions

Microsoft Visual Studio Code:

Version 1.0.0 and below 1.99.1 is affected.

Exploit Probability

EPSS

0.74%

Percentile

72.80%