CVE-2025-32726
published 2025-04-12CVE-2025-32726: Improper access control in Visual Studio Code allows an authorized attacker to elevate privileges locally.
medium6.8CVSS 3.1
AVLACLPRLUIRSUCHIHAL
Improper access control in Visual Studio Code allows an authorized attacker to elevate privileges locally.
Affected
3 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| microsoft | visual_studio_code | < 1.99.1 | 1.99.1 |
| microsoft | visual_studio_code | >= 1.0.0 < 1.99.1 | 1.99.1 |
| msrc | visual_studio_code | — | — |