Lucene search
K

109 matches found

EUVD
EUVD
added 2 days ago6 views

EUVD-2026-41445

Url redirection to untrusted site 'open redirect' in M365 Copilot allows an unauthorized attacker to elevate privileges over a network...

9.3CVSS5.6AI score0.00542EPSS
Exploits0References2
CVE
CVE
added 3 days ago15 views

CVE-2026-41106

Technical details for CVE-2026-41106 are not publicly available in the provided documents. Monitor for updates from vendors and security feeds.

9.3CVSS5.6AI score0.00542EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 3 days ago3 views

CVE-2026-41106

Url redirection to untrusted site 'open redirect' in M365 Copilot allows an unauthorized attacker to elevate privileges over a network...

9.3CVSS5.6AI score0.00542EPSS
Exploits0References2
Cvelist
Cvelist
added 3 days ago26 views

CVE-2026-41106 Microsoft 365 Copilot Elevation of Privilege Vulnerability

...

9.3CVSS0.00542EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 3 days ago5 views

PT-2026-55318

Name of the Vulnerable Software and Affected Versions M365 Copilot affected versions not specified Description M365 Copilot contains an open redirect issue, which occurs when an application redirects users to an untrusted external site. This flaw allows an unauthorized attacker to elevate...

9.3CVSS6AI score0.00542EPSS
Exploits0References4
Cvelist
Cvelist
added 2026/06/19 8:29 p.m.18 views

CVE-2026-47645 Microsoft 365 Copilot's Business Chat Elevation of Privilege Vulnerability

...

8.8CVSS0.00408EPSS
Exploits0References1
CVE
CVE
added 2026/06/19 8:29 p.m.21 views

CVE-2026-47645

Summary: CVE-2026-47645 is an open redirect vulnerability in Microsoft 365 Copilot’s Business Chat that can lead to privilege escalation over a network. The issue is described across sources (NVD/MSRC/CVE records) as a url redirection to an untrusted site, with a CVSS v3.1 base score of 8.8 (HIGH...

8.8CVSS5.8AI score0.00408EPSS
Exploits0References1Affected Software1
EUVD
EUVD
added 2026/06/19 8:29 p.m.11 views

EUVD-2026-38091

Url redirection to untrusted site 'open redirect' in Microsoft 365 Copilot's Business Chat allows an unauthorized attacker to elevate privileges over a network...

8.8CVSS5.8AI score0.00408EPSS
Exploits0References1
EUVD
EUVD
added 2026/06/19 12:31 a.m.9 views

EUVD-2026-37946

Missing authentication for critical function in M365 Copilot allows an unauthorized attacker to disclose information over a network...

9.8CVSS5.3AI score0.00578EPSS
Exploits0References2
NVD
NVD
added 2026/06/18 10:16 p.m.12 views

CVE-2026-54130

Missing authentication for critical function in M365 Copilot allows an unauthorized attacker to disclose information over a network...

9.8CVSS0.00578EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/06/18 9:42 p.m.4 views

CVE-2026-54130 M365 Copilot Information Disclosure Vulnerability

...

9.8CVSS5.8AI score0.00578EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/06/18 9:42 p.m.21 views

CVE-2026-54130 M365 Copilot Information Disclosure Vulnerability

...

9.8CVSS0.00578EPSS
Exploits0References1
CVE
CVE
added 2026/06/18 9:42 p.m.101 views

CVE-2026-54130

CVE-2026-54130 affects M365 Copilot and involves missing authentication for a critical function, enabling an unauthorized attacker to disclose information over a network. The NVD and CVE records confirm the root cause as unauthenticated access to a high-impact function, with a CVSS v3.1 base scor...

9.8CVSS5.3AI score0.00578EPSS
Exploits0References1Affected Software1
Microsoft CVE
Microsoft CVE
added 2026/06/18 2:0 p.m.9 views

Microsoft 365 Copilot's Business Chat Elevation of Privilege Vulnerability

Url redirection to untrusted site 'open redirect' in Microsoft 365 Copilot's Business Chat allows an unauthorized attacker to elevate privileges over a network...

8.8CVSS5.8AI score0.00408EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2026/06/18 2:0 p.m.13 views

M365 Copilot Information Disclosure Vulnerability

Missing authentication for critical function in M365 Copilot allows an unauthorized attacker to disclose information over a network...

9.8CVSS5.9AI score0.00578EPSS
Exploits0
Microsoft Secure
Microsoft Secure
added 2026/06/09 5:35 p.m.29 views

Reconstructing AI activity in investigations

AI systems are now part of everyday work. Investigators need a consistent way to reconstruct what happened within them. Security teams are already investigating activity involving Microsoft 365 Copilot and Azure AI services—from prompt injection attempts to unexpected data access. Those signals a...

5.5AI score
Exploits0
EUVD
EUVD
added 2026/06/05 12:31 a.m.10 views

EUVD-2026-34334

Improper neutralization of special elements used in a command 'command injection' in M365 Copilot allows an unauthorized attacker to disclose information over a network...

6.5CVSS5.8AI score0.0764EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/06/04 10:0 p.m.39 views

CVE-2026-42824 M365 Copilot Information Disclosure Vulnerability

...

6.5CVSS5.4AI score0.0764EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/06/04 10:0 p.m.6 views

CVE-2026-42824

Missing authentication for critical function in M365 Copilot allows an unauthorized attacker to disclose information over a network...

7.5CVSS6.1AI score0.0764EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/06/04 10:0 p.m.8 views

CVE-2026-45497 Microsoft M365 Copilot Remote Code Execution Vulnerability

...

7.7CVSS5.4AI score0.00452EPSS
Exploits0References1
Rows per page
Query Builder