A critical security vulnerability in GitHub Copilot and Visual Studio Code has been discovered that allows attackers to achieve remote code execution through prompt injection attacks, potentially leading to full system compromise of developers’ machines. The vulnerability, tracked as CVE-2025-53773, exploits GitHub Copilot’s ability to modify project configuration files, particularly the .vscode/settings.json file, enabling attackers […]
The post GitHub Copilot RCE Vulnerability via Prompt Injection Leads to Full System Compromise appeared first on Cyber Security News.
This article has been indexed from Cyber Security News
Read the original article: