CVE-2026-45644
HIGH
NVD
CVSS Score
8
Severity
HIGH
Published
Jun 09, 2026
Vendor
unknown
Description
Improper neutralization of input during web page generation ('cross-site scripting') in Microsoft Live Share Canvas SDK allows an authorized attacker to elevate privileges over a network.