Skip to main content

Github Copilot Plugin For Jetbrains Ides

1 CVEs product

Monthly

CVE-2026-50510 HIGH PATCH This Week

Local code execution in the GitHub Copilot plugin for JetBrains IDEs allows an unauthorized attacker to run arbitrary code on a developer's machine by leveraging improper restriction of file/resource names (CWE-641), with exploitation requiring the victim to perform an action (UI:R). Rated CVSS 7.8 (high) with full confidentiality, integrity, and availability impact, this is a local-vector flaw affecting developers running the Copilot extension; no public exploit identified at time of analysis and it is not listed in CISA KEV. Microsoft has published a fix advisory (MSRC CVE-2026-50510).

Authentication Bypass Github Copilot Plugin For Jetbrains Ides
NVD
CVSS 3.1
7.8
EPSS
0.3%
EPSS 0% CVSS 7.8
HIGH PATCH This Week

Local code execution in the GitHub Copilot plugin for JetBrains IDEs allows an unauthorized attacker to run arbitrary code on a developer's machine by leveraging improper restriction of file/resource names (CWE-641), with exploitation requiring the victim to perform an action (UI:R). Rated CVSS 7.8 (high) with full confidentiality, integrity, and availability impact, this is a local-vector flaw affecting developers running the Copilot extension; no public exploit identified at time of analysis and it is not listed in CISA KEV. Microsoft has published a fix advisory (MSRC CVE-2026-50510).

Authentication Bypass Github Copilot Plugin For Jetbrains Ides
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy