CVE-2026-41611

Improper neutralization of script-related html tags in a web page (basic xss) in Visual Studio Code allows an unauthorized attacker to execute code locally.

More information : https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-41611