2 matches found
CVE-2025-59252
CVE-2025-59252 — M365 Copilot Information Disclosure Affected product: Microsoft 365 Copilot (Copilot/spoofing context referenced across sources). Root cause: Improper neutralization of special elements used in a command (command injection) in Copilot, enabling an unauthorized attacker to disclos...
CVE-2026-21521
CVE-2026-21521 affects Copilot and corresponds to an information-disclosure vulnerability caused by improper neutralization of escape, meta, or control sequences. The Red Hat, NVD, Microsoft, EUVD, and other sources consistently describe an unauthorized attacker disclosing information over a netw...