← Back to home
wid-sec-w-2026-0717  ·  Published 2026-03-12  ·  View on BSI CERT-Bund ↗

Microsoft 365 Copilot and Edge: Vulnerability allows Offenlegung from Informationen and Manipulation from Daten

CVSS 7.1 HIGH

Risk Summary

AI command injection in M365 Copilot allows an unauthorized attacker to disclose information over a network.

CVEs (1)

Affected Vendors

Microsoft

Affected Products (1)

Microsoft · Edge Android and iOS 145.3800.99

Get alerted to advisories like this

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.

Start free trial Learn more