Lucene search
K

47 matches found

The Hacker News
The Hacker News
added 2024/08/21 4:15 p.m.53 views

Microsoft Patches Critical Copilot Studio Vulnerability Exposing Sensitive Data

Cybersecurity researchers have disclosed a critical security flaw impacting Microsoft's Copilot Studio that could be exploited to access sensitive information. Tracked as CVE-2024-38206 CVSS score: 8.5, the vulnerability has been described as an information disclosure bug stemming from a...

9.1CVSS6.7AI score0.12341EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2024/08/14 12:0 a.m.8 views

PT-2024-7988

Name of the Vulnerable Software and Affected Versions Microsoft Copilot Studio affected versions not specified Description The issue is related to the exposure of sensitive information to unauthorized actors in Microsoft Copilot Studio. This allows an unauthenticated attacker to view sensitive...

7.8CVSS7.2AI score0.00976EPSS
Exploits0References10
NVD
NVD
added 2024/08/06 10:15 p.m.59 views

CVE-2024-38206

An authenticated attacker can bypass Server-Side Request Forgery SSRF protection in Microsoft Copilot Studio to leak sensitive information over a network...

8.5CVSS0.12341EPSS
Exploits0References1
CVE
CVE
added 2024/08/06 9:38 p.m.95 views

CVE-2024-38206

Microsoft Copilot Studio contains CVE-2024-38206: an authenticated attacker can bypass SSRF protections to leak sensitive information over the network. Affected product: Microsoft Copilot Studio. Root cause per the entry is insufficient validation allowing SSRF bypass. Impact is information discl...

8.5CVSS6.3AI score0.12341EPSS
Exploits0References1Affected Software1
Kaspersky
Kaspersky
added 2024/08/06 12:0 a.m.22 views

KLA71412 OSI vulnerability in Microsoft Office

Information disclosure vulnerability was found in Microsoft Office. Malicious users can exploit this vulnerability to obtain sensitive information. Original advisories CVE-2024-38206 CVE list CVE-2024-38206 critical Solution Install necessary updates from the KB section, that are listed in your...

8.5CVSS6.3AI score0.12341EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/08/06 12:0 a.m.3 views

Microsoft Copilot Studio 代码问题漏洞

Microsoft Copilot Studio is an artificial intelligence chatbot from Microsoft Corporation USA. A code issue vulnerability exists in Microsoft Copilot Studio that originates from an authenticated attacker who can bypass server-side request forgery SSRF protections, resulting in the disclosure of...

8.5CVSS6.6AI score0.12341EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/08/06 12:0 a.m.9 views

PT-2024-5726

Name of the Vulnerable Software and Affected Versions Microsoft Copilot Studio affected versions not specified Description The issue is related to insufficient validation of incoming requests, allowing an authenticated attacker to bypass Server-Side Request Forgery SSRF protection and potentially...

8.5CVSS5.8AI score0.12341EPSS
Exploits0References44
Rows per page
Query Builder