CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Microsoft Secure•added 2026/03/30 4:0 p.m.•2 views

Addressing the OWASP Top 10 Risks in Agentic AI with Microsoft Copilot Studio

6.5AI score

Kaspersky•added 2026/03/19 12:0 a.m.•3 views

KLA90948 OSI vulnerability in Microsoft Copilot Studio

An information disclosure vulnerability was found in Microsoft Copilot Studio. Malicious users can exploit this vulnerability to obtain sensitive information, bypass security restrictions. Original advisories CVE-2026-26136 Exploitation Related products Microsoft-Copilot-Studio CVE list...

7.5CVSS5.9AI score0.00092EPSS

Exploits0References3

Microsoft Secure•added 2026/02/12 8:38 p.m.•6 views

Top 10 actions to build agents securely with Microsoft Copilot Studio

Organizations are rapidly adopting Copilot Studio agents, but threat actors are equally fast at exploiting misconfigured AI workflows. Mis-sharing, unsafe orchestration, and weak authentication create new identity and data‑access paths that traditional controls don’t monitor. As AI agents become...

6AI score

RedhatCVE•added 2026/01/24 3:17 a.m.•3 views

CVE-2026-21520

Exposure of Sensitive Information to an Unauthorized Actor in Copilot Studio allows a unauthenticated attacker to view sensitive information through network attack vector...

Microsoft Secure•added 2026/01/23 8:57 p.m.•7 views

From runtime risk to real‑time defense: Securing AI agents

AI agents, whether developed in Microsoft Copilot Studio or on alternative platforms, are becoming a powerful means for organizations to create custom solutions designed to enhance productivity and automate organizational processes by seamlessly integrating with internal data and systems. From a...

6.6AI score

NVD•added 2026/01/22 11:15 p.m.•1 views

CVE-2026-21520

Exposure of Sensitive Information to an Unauthorized Actor in Copilot Studio allows a unauthenticated attacker to view sensitive information through network attack vector...

7.5CVSS0.00125EPSS

CVE•added 2026/01/22 10:47 p.m.•18 views

CVE-2026-21520

CVE-2026-21520 is a Copilot Studio information disclosure vulnerability with a network attack vector, allowing an unauthenticated attacker to view sensitive information. The NVD/MSRC entry attributes a CVSS v3.1 base score of 7.5 (HIGH) and confirms network access with no privileges. Red Hat and ...

Exploits0References1Affected Software1

Vulnrichment•added 2026/01/22 10:47 p.m.•2 views

CVE-2026-21520 Copilot Studio Information Disclosure Vulnerability

...

7.5CVSS5.3AI score0.00125EPSS

ATTACKERKB•added 2026/01/22 10:47 p.m.•3 views

CVE-2026-21520

Exposure of Sensitive Information to an Unauthorized Actor in Copilot Studio allows a unauthenticated attacker to view sensitive information through network attack vector...

Cvelist•added 2026/01/22 10:47 p.m.•16 views

Exploits0References2

CVE-2026-21520 Copilot Studio Information Disclosure Vulnerability

...

7.5CVSS0.00125EPSS

Microsoft CVE•added 2026/01/22 4:0 p.m.•8 views

Copilot Studio Information Disclosure Vulnerability

Exposure of Sensitive Information to an Unauthorized Actor in Copilot Studio allows a unauthenticated attacker to view sensitive information through network attack vector...

CNNVD•added 2026/01/22 12:0 a.m.•2 views

Microsoft Copilot Studio command injection vulnerability

Microsoft Copilot Studio is an artificial intelligence chatbot developed by Microsoft Corporation. Microsoft Copilot Studio has a command injection vulnerability, which stems from improper neutralization of certain elements. Attackers can exploit this vulnerability to access sensitive information...

7.5CVSS6AI score0.00125EPSS