Microsoft 365 Copilot vulnerabilities
2 known vulnerabilities affecting microsoft/365_copilot.
Total CVEs
2
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL1HIGH1
Vulnerabilities
Page 1 of 1
CVE-2026-26133HIGHCVSS 7.1fixed in 2.107.2fixed in 16.0.19815.100002026-03-16
CVE-2026-26133 [HIGH] CWE-77 CVE-2026-26133: AI command injection in M365 Copilot allows an unauthorized attacker to disclose information over a
AI command injection in M365 Copilot allows an unauthorized attacker to disclose information over a network.
nvd
CVE-2021-43905CRITICALCVSS 9.6fixed in 18.2110.13110.02021-12-15
CVE-2021-43905 [CRITICAL] CVE-2021-43905: Microsoft Office app Remote Code Execution Vulnerability
Microsoft Office app Remote Code Execution Vulnerability
nvd