Copilot Studio@- Security Vulnerabilities and Issues — Copilot Studio@- CVE List

Lucene search

MicrosoftCopilot Studio-

3 matches found

CVE•added 2024/11/26 8:15 p.m.•80 views

CVE-2024-49038

Improper neutralization of input during web page generation ('Cross-site Scripting') in Copilot Studio by an unauthorized attacker leads to elevation of privilege over a network.

9.6CVSS9.2AI score0.00339EPSS

CVE•added 2024/08/06 10:15 p.m.•75 views

CVE-2024-38206

An authenticated attacker can bypass Server-Side Request Forgery (SSRF) protection in Microsoft Copilot Studio to leak sensitive information over a network.

8.5CVSS6.3AI score0.02425EPSS

CVE•added 2024/10/09 5:15 p.m.•49 views

CVE-2024-43610

Exposure of Sensitive Information to an Unauthorized Actor in Copilot Studio allows a unauthenticated attacker to view sensitive information through network attack vector

7.5CVSS7.2AI score0.02395EPSS