| CVE Number | Vulnerability | Product | Severity | Date |
|---|---|---|---|---|
| CVE-2025-62214 | Visual Studio Remote Code Execution Vulnerability | Microsoft Visual Studio | Critical | 06-01-2026 |
Technical Information
The attacker exploits a command injection flaw to execute arbitrary code locally after user interaction and multiple required steps: prompt injection, Copilot Agent interaction, and triggering a build.
Patch release date: Nov 11, 2025
Further information on this vulnerability is available at : CVE-2025-62214