CVE-2025-55319: Agentic AI and Visual Studio Code Remote Code Execution Vulnerability

Overview

Severity

High (CVSS 8.8)

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C

Category

Remote Code Execution

Exploit Status

Not Exploited

Exploitation Likelihood

More Likely

Patch Tuesday

2025-Sep

Released

2025-09-11

Last Updated

2026-02-20

EPSS Score

0.08% (percentile: 24.2%)

Description

Ai command injection in Agentic AI and Visual Studio Code allows an unauthorized attacker to execute code over a network.

Affected Products (1)

Developer Tools

• Visual Studio Code

Security Updates (1)

• Release Notes

Acknowledgments

<a href="https://www.linkedin.com/in/tarek-nakkouch/">Nakkouch Tarek</a>, Ruben Gutierrez with <a href="https://www.sky.com/">Sky</a>, <a href="https://www.linkedin.com/in/tarek-nakkouch/">Nakkouch Tarek</a>, Talon Uptain

Revision History

• 2025-09-11: Information published.
• 2025-09-12: Added an acknowledgement. This is an informational change only.
• 2025-12-23: Corrected Download and Article links in the Security Updates table. This is an informational change only.
• 2026-02-20: Updated CWE value. This is an informational change only.