Vulnerabilities

Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.

Filtering: Tag: 365-copilot Clear
ID Title
CVE-2026-41106 Open Redirect in microsoft (CVE-2026-41106)
vulnerability in microsoft (CVE-2026-41106). Confidential information can be exposed externally.
CVE-2026-42895 Command Injection in microsoft (CVE-2026-42895)
command injection in microsoft (CVE-2026-42895). Data can be tampered with by attackers.
CVE-2026-47645 Open Redirect in microsoft (CVE-2026-47645)
vulnerability in microsoft (CVE-2026-47645). Successful exploitation can lead to full system takeover.
CVE-2026-54130 Vulnerability in microsoft (CVE-2026-54130)
vulnerability in microsoft (CVE-2026-54130). Successful exploitation can lead to full system takeover.
CVE-2026-45461 Use-After-Free in microsoft (CVE-2026-45461)
vulnerability in microsoft (CVE-2026-45461). Successful exploitation can lead to full system takeover.
CVE-2026-45463 Vulnerability in microsoft (CVE-2026-45463)
vulnerability in microsoft (CVE-2026-45463). Successful exploitation can lead to full system takeover.
CVE-2026-45472 Use-After-Free in microsoft (CVE-2026-45472)
vulnerability in microsoft (CVE-2026-45472). Successful exploitation can lead to full system takeover.
CVE-2026-45474 Use-After-Free in microsoft (CVE-2026-45474)
vulnerability in microsoft (CVE-2026-45474). Successful exploitation can lead to full system takeover.
CVE-2026-45460 Vulnerability in microsoft (CVE-2026-45460)
vulnerability in microsoft (CVE-2026-45460). Confidential information can be exposed externally.
CVE-2026-42827 Command Injection in microsoft (CVE-2026-42827)
command injection in microsoft (CVE-2026-42827). Confidential information can be exposed externally.
CVE-2026-41090 Command Injection in microsoft (CVE-2026-41090)
command injection in microsoft (CVE-2026-41090). Confidential information can be exposed externally.
CVE-2026-41100 Improper access control in M365 Copilot allows an authorized attacker to perform spoofing locally.
Improper access control in M365 Copilot allows an authorized attacker to perform spoofing locally.
CVE-2026-41614 Vulnerability in microsoft (CVE-2026-41614)
vulnerability in microsoft (CVE-2026-41614). Confidential information can be exposed externally.

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →