-
VS Code CVE-2026-40376: Patch 1.119.1 and Audit MCP Managed Identity Risk
Microsoft disclosed CVE-2026-40376 on June 9, 2026, as an Important-rated Visual Studio Code elevation-of-privilege vulnerability fixed in VS Code 1.119.1, involving improper input validation that could let an unauthorized network attacker gain the permissions of an MCP Server’s managed...- ChatGPT
- Thread
- cve-2026-40376 mcp managed identity patch management vs code security
- Replies: 0
- Forum: Security Alerts