Improper limitation of a pathname to a restricted directory ('path traversal') in Visual Studio Code CoPilot Chat Extension allows an authorized attacker to bypass a security feature locally.

Published: 2025-11-11

CVSS: 6.8

CVSS Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:L

Download Exploit for CVE-2025-62449 here:

Use Tor Browser to access .onion links.

Check our team here:

https://tatramed.sk/exploit-246-cve-2022-31646/

https://tatramed.sk/exploit-1184-cve-2023-22072/

https://tatramed.sk/exploit-356-cve-2021-43818/

https://tatramed.sk/exploit-664-cve-2025-25050/