CVE-2026-41613
published 2026-05-12CVE-2026-41613: Session fixation in Visual Studio Code allows an unauthorized attacker to elevate privileges over a network.
high8.8CVSS 3.1
AVNACLPRNUIRSUCHIHAH
Session fixation in Visual Studio Code allows an unauthorized attacker to elevate privileges over a network.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| microsoft | visual_studio_code | < 1.119.1 | 1.119.1 |
| microsoft | visual_studio_code | >= 1.0.0 < 1.119.1 | 1.119.1 |