Published November 25, 2025
The following revisions have been made: 1) In the Security Updates table, corrected the impact entries to Remote Code Execution. 2) The CVSS scores have been updated. These are informational changes only. Customers who have successfully installed the update do not need to take any further action.
Published November 22, 2025
Updated Security Impact values. This is an informational change only.
Published November 21, 2025
Improper limitation of a pathname to a restricted directory (‘path traversal’) in Visual Studio Code CoPilot Chat Extension allows an authorized attacker to bypass a security feature locally.
Published November 21, 2025
Concurrent execution using shared resource with improper synchronization (‘race condition’) in Windows Kernel allows an authorized attacker to elevate privileges locally.
Published November 21, 2025
Stack-based buffer overflow in Software for Open Networking in the Cloud (SONiC) allows an unauthorized attacker to elevate privileges over a network.
Published November 21, 2025
Information published.
Published November 21, 2025
Improper access control in GitHub Copilot and Visual Studio Code allows an authorized attacker to bypass a security feature over a network.
Published November 21, 2025
Information published.
Published November 21, 2025
Information published.
Published November 21, 2025
Information published.
100% Michigan
NSG is owned & operated, offering enterprise-level IT service & support, right in your own back yard.
This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.
