Jun 2026: Microsoft Visual Studio Code CoPilot Chat Security Feature Bypass Vulnerability
CVE-2026-50519 Published on June 19, 2026

Microsoft Visual Studio Code CoPilot Chat Security Feature Bypass Vulnerability
Initialization of a resource with an insecure default in GitHub Copilot and Visual Studio Code allows an unauthorized attacker to disclose information over a network.

Vendor Advisory NVD

Weakness Type

Insecure Default Initialization of Resource

The software initializes or sets a resource with a default that is intended to be changed by the administrator, but the default is not secure.

Products Associated with CVE-2026-50519

Want to know whenever a new CVE is published for Microsoft Gihub Copilot Chat? stack.watch will email you.

Microsoft Gihub Copilot Chat

Affected Versions

Microsoft GitHub Copilot Chat:

Version 1.0.0 and below 1.123.2 is affected.

Jun 2026: Microsoft Visual Studio Code CoPilot Chat Security Feature Bypass VulnerabilityCVE-2026-50519 Published on June 19, 2026

Weakness Type

Insecure Default Initialization of Resource

Products Associated with CVE-2026-50519

Affected Versions

Jun 2026: Microsoft Visual Studio Code CoPilot Chat Security Feature Bypass Vulnerability
CVE-2026-50519 Published on June 19, 2026