CVE-2026-41109 | Microsoft Visual Studio Code 0.37.3/1.99.1/1.104.0/1.106.2 injection

A vulnerability has been found in Microsoft Visual Studio Code 0.37.3/1.99.1/1.104.0/1.106.2 and classified as critical. Affected is an unknown function. Performing a manipulation results in injection.

This vulnerability is cataloged as CVE-2026-41109. It is possible to initiate the attack remotely. There is no exploit available.

The affected component should be upgraded.VulDB Recent EntriesRead More