Improper neutralization of script-related html tags in a web page (basic xss) in Visual Studio Code allows an unauthorized attacker to execute code locally.Referenceshttps://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-41611
