GHSA-7vc2-x95v-g6m9HighCVSS 7.5
GitHub Copilot 1.372.0 allows filesystem access outside of a workspace folder (without user...
🔗 CVE IDs covered (1)
📋 Description
GitHub Copilot 1.372.0 allows filesystem access outside of a workspace folder (without user approval) via a file-handler URI parameter to fetch_webpage. Therefore, exfiltration could occur if there is indirect prompt injection.
🔗 References (5)
- https://nvd.nist.gov/vuln/detail/CVE-2025-66389
- https://blindcyber.com/2025/10/28/copilot-fun
- https://github.com/microsoft/vscode-copilot-chat
- https://github.com/microsoft/vscode/blob/03baef1008086ed4960042fa463e570072173bb5/src/vs/workbench/contrib/chat/electron-browser/tools/fetchPageTool.ts#L152
- https://github.com/advisories/GHSA-7vc2-x95v-g6m9