Microsoft · Visual Studio Code · CVE-2026-47292
**Name of the Vulnerable Software and Affected Versions**
Visual Studio Code MSSQL Extension (affected versions not specified)
**Description**
The issue involves the inclusion of functionality from an untrusted control sphere. This allows an unauthorized attacker to locally elevate privileges or execute arbitrary code.
**Recommendations**
At the moment, there is no information about a newer version that contains a fix for this vulnerability.