{"id":"CVE-2025-68120","details":"To prevent unexpected untrusted code execution, the Visual Studio Code Go extension is now disabled in Restricted Mode.","aliases":["GHSA-fjmr-7667-8v4p","GO-2025-4249"],"modified":"2026-04-09T11:02:39.722695Z","published":"2025-12-30T00:15:52.333Z","related":["SUSE-SU-2026:0037-1"],"references":[{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2025-68120"},{"type":"ADVISORY","url":"https://pkg.go.dev/vuln/GO-2025-4249"},{"type":"ARTICLE","url":"https://groups.google.com/g/golang-dev/c/CHG4qfcicBU/m/4tanFUymDQAJ"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/golang/vscode-go","events":[{"introduced":"0"},{"fixed":"b48617be75546524b66e616d66609cf7da6cb870"}],"database_specific":{"versions":[{"introduced":"0"},{"fixed":"0.52.1"}]}}],"versions":["survey/v0.1.0","v0.35.0-rc.1","v0.35.0-rc.2","v0.43.0","v0.43.0-rc.1","v0.43.1","v0.43.1-rc.1","v0.43.2","v0.43.3","v0.43.4","v0.45.0","v0.45.1","v0.45.2","v0.47.0","v0.47.1","v0.47.2","v0.47.3","v0.47.4","v0.49.0","v0.49.1","v0.51.0","v0.51.1","v0.52.0","v0.52.0-rc.1"],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-68120.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L"}]}