CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Microsoft: >> Github Copilot >> 1.1.1 Security Vulnerabilities

CVE-2026-21516

Improper neutralization of special elements used in a command ('command injection') in Github Copilot allows an unauthorized attacker to execute code over a network.

CVSS Score

8.8

EPSS Score

0.0

Published

2026-02-10

CVE-2025-64671

Improper neutralization of special elements used in a command ('command injection') in Copilot allows an unauthorized attacker to execute code locally.

CVSS Score

8.4

EPSS Score

0.001

Published

2025-12-09

Page 1

Vulnerabilities

Vulnerable Software

Microsoft: >> Github Copilot >> 1.1.1 Security Vulnerabilities

Products

Pricing

Contact Us