What the vulnerability does
01Description
Exposure of sensitive information to an unauthorized actor in Visual Studio Code allows an unauthorized attacker to disclose information over a network.
CVE-2026-47284
MEDIUM
CVE-2026-47284: Visual Studio Code Information Disclosure Vulnerability
CVSS base score
6.5/10
CVSS vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N/E:U/RL:O/RC:C
Key dates
02Disclosure timeline
June 9, 2026
CVE published
June 15, 2026
Record updated
External resources
03References
Related vulnerabilities
04Related CVE
CVE-2018-16849
CVE-2023-33979 gpt_academic's Configuration File vulnerable to File Information Disclosure
CVE-2020-25836 Potential information leakage resulting in unauthorized access
CVE-2024-32754 Johnson Controls Kantech KT1, KT2, and KT400 Door Controllers - Exposure of Sensitive Information
CVE-2024-7630 Relevanssi <= 4.22.2 (Free) and <= 2.25.1 (Premium) - Unauthenticated Information Exposure
