CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

726 matches found

RLSA-2026:19136 Important: grafana-pcp security update

The Grafana plugin for Performance Co-Pilot includes datasources for scalable time series from pmseries and Redis, live PCP metrics and bpftrace scripts from pmdabpftrace, as well as several dashboards. Security Fixes: golang: internal/syscall/unix: Root.Chmod can follow symlinks out of the root...

7.8CVSS5.8AI score0.00019EPSS

Exploits0References3

RedhatCVE•added 2026/05/26 2:12 p.m.•5 views

CVE-2026-42827

Improper neutralization of special elements used in a command 'command injection' in M365 Copilot allows an unauthorized attacker to disclose information over a network...

7.5CVSS5.8AI score0.00072EPSS

Exploits0References1

RedhatCVE•added 2026/05/26 2:12 p.m.•7 views

CVE-2026-41090

Improper neutralization of special elements used in a command 'command injection' in Microsoft Copilot allows an unauthorized attacker to perform tampering over a network...

9.3CVSS5.8AI score0.00053EPSS

Exploits0References1

NVD•added 2026/05/22 11:16 p.m.•4 views

CVE-2026-42827

Improper neutralization of special elements used in a command 'command injection' in M365 Copilot allows an unauthorized attacker to disclose information over a network...

7.5CVSS0.00072EPSS

Exploits0References1

NVD•added 2026/05/22 11:16 p.m.•7 views

CVE-2026-41090

Improper neutralization of special elements used in a command 'command injection' in Microsoft Copilot allows an unauthorized attacker to perform tampering over a network...

9.3CVSS0.00053EPSS

Exploits0References1

Vulnrichment•added 2026/05/22 10:3 p.m.•4 views

CVE-2026-41090 Microsoft Copilot Tampering Vulnerability

...

9.3CVSS5.8AI score0.00053EPSS

Exploits0References1

Cvelist•added 2026/05/22 10:3 p.m.•11 views

CVE-2026-41090 Microsoft Copilot Tampering Vulnerability

...

9.3CVSS0.00053EPSS

Exploits0References1

ATTACKERKB•added 2026/05/22 10:3 p.m.•3 views

CVE-2026-41090

Improper neutralization of special elements used in a command 'command injection' in Microsoft Copilot allows an unauthorized attacker to perform tampering over a network...

9.3CVSS5.8AI score0.00053EPSS

Exploits0References2

CVE•added 2026/05/22 10:3 p.m.•26 views

CVE-2026-41090

CVE-2026-41090 affects Microsoft Copilot. The vulnerability arises from improper neutralization of elements used in a command (command injection) that enables tampering over a network. The CVSS‑3.1 vector indicates network attack, high confidentiality and integrity impact, no availability impact,...

9.3CVSS5.8AI score0.00053EPSS

Exploits0References1Affected Software1

EUVD•added 2026/05/22 10:3 p.m.•3 views

EUVD-2026-31512

Improper neutralization of special elements used in a command 'command injection' in Microsoft Copilot allows an unauthorized attacker to perform tampering over a network...

9.3CVSS5.8AI score0.00053EPSS

Exploits0References1

CVE•added 2026/05/22 10:3 p.m.•24 views

CVE-2026-42827

CVE-2026-42827 concerns a command injection vulnerability in Microsoft 365 Copilot. The Red Hat, NVD, MSRC, and other feeds describe improper neutralization of special elements used in a command, enabling an attacker to disclose information over a network. Affected product is Microsoft 365 Copilo...

7.5CVSS5.8AI score0.00072EPSS

Exploits0References1Affected Software1

ATTACKERKB•added 2026/05/22 10:3 p.m.•1 views

CVE-2026-42827

Improper neutralization of special elements used in a command 'command injection' in M365 Copilot allows an unauthorized attacker to disclose information over a network...

6.5CVSS5.8AI score0.00072EPSS

Exploits0References2

EUVD•added 2026/05/22 10:3 p.m.•4 views

EUVD-2026-31513

Improper neutralization of special elements used in a command 'command injection' in M365 Copilot allows an unauthorized attacker to disclose information over a network...

6.5CVSS5.8AI score0.00072EPSS

Exploits0References1

Vulnrichment•added 2026/05/22 10:3 p.m.•5 views

CVE-2026-42827 M365 Copilot Information Disclosure Vulnerability

...

6.5CVSS5.8AI score0.00072EPSS

Exploits0References1

Cvelist•added 2026/05/22 10:3 p.m.•7 views

CVE-2026-42827 M365 Copilot Information Disclosure Vulnerability

...

6.5CVSS0.00072EPSS

Exploits0References1

CNNVD•added 2026/05/22 12:0 a.m.•6 views

Microsoft 365 Copilot 命令注入漏洞

Microsoft 365 Copilot is a generative AI collaboration assistant integrated into the Microsoft Office suite. Microsoft 365 Copilot has a command injection vulnerability, which stems from improper of special elements during command injections. This vulnerability could allow unauthorized attackers ...

7.5CVSS5.8AI score0.00072EPSS

Exploits0References1

Positive Technologies•added 2026/05/22 12:0 a.m.•8 views

PT-2026-42848

Name of the Vulnerable Software and Affected Versions M365 Copilot affected versions not specified Description Improper neutralization of special elements used in a command, known as command injection, allows an unauthorized attacker to disclose information over a network. Recommendations At the...

7.5CVSS5.8AI score0.00072EPSS

Exploits0References5

Positive Technologies•added 2026/05/22 12:0 a.m.•7 views

PT-2026-42846

Name of the Vulnerable Software and Affected Versions Microsoft Copilot affected versions not specified Description Improper neutralization of special elements used in a command, known as command injection, allows an unauthorized attacker to perform tampering over a network. Recommendations At th...

9.3CVSS5.8AI score0.00053EPSS

Exploits0References5

CNNVD•added 2026/05/22 12:0 a.m.•5 views

Microsoft 365 Copilot 命令注入漏洞

9.3CVSS5.8AI score0.00053EPSS

Exploits0References1

Microsoft CVE•added 2026/05/21 2:0 p.m.•9 views

M365 Copilot Information Disclosure Vulnerability

Improper neutralization of special elements used in a command 'command injection' in M365 Copilot allows an unauthorized attacker to disclose information over a network...

7.5CVSS5.8AI score0.00072EPSS

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by