PT-2026-51297 · Undefined · Undefined

Published

2026-06-22

Updated

2026-06-22

CVE-2025-66389

CVSS v3.1

7.5

High

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

GitHub Copilot 1.372.0 allows filesystem access outside of a workspace folder (without user approval) via a file-handler URI parameter to fetch webpage. Therefore, exfiltration could occur if there is indirect prompt injection.

Fix

Files Accessible to External Parties

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-552

Related Identifiers

CVE-2025-66389

Affected Products

Undefined

PT-2026-51297 · Undefined · Undefined

CVE-2025-66389

Weakness Enumeration

Related Identifiers

Affected Products

References · 4