Microsoft Teams For Android vulnerabilities

CVE-2026-26133 [HIGH] CWE-77 CVE-2026-26133: AI command injection in M365 Copilot allows an unauthorized attacker to disclose information over a AI command injection in M365 Copilot allows an unauthorized attacker to disclose information over a network.

CVE-2025-53783 [HIGH] CWE-122 CVE-2025-53783: Heap-based buffer overflow in Microsoft Teams allows an unauthorized attacker to execute code over a Heap-based buffer overflow in Microsoft Teams allows an unauthorized attacker to execute code over a network.

CVE-2025-49731 [LOW] CWE-280 CVE-2025-49731: Improper handling of insufficient permissions or privileges in Microsoft Teams allows an authorized Improper handling of insufficient permissions or privileges in Microsoft Teams allows an authorized attacker to elevate privileges over a network.

CVE-2024-21448 [MEDIUM] CWE-20 CVE-2024-21448: Microsoft Teams for Android Information Disclosure Vulnerability Microsoft Teams for Android Information Disclosure Vulnerability

CVE-2024-21374 [MEDIUM] CWE-20 CVE-2024-21374: Microsoft Teams for Android Information Disclosure Vulnerability Microsoft Teams for Android Information Disclosure Vulnerability

CVE-2023-29328 [HIGH] CWE-416 CVE-2023-29328: Microsoft Teams Remote Code Execution Vulnerability Microsoft Teams Remote Code Execution Vulnerability

CVE-2023-29330 [HIGH] CWE-416 CVE-2023-29330: Microsoft Teams Remote Code Execution Vulnerability Microsoft Teams Remote Code Execution Vulnerability

CVE-2022-21965 [HIGH] Microsoft Teams Denial of Service Vulnerability Microsoft Teams Denial of Service Vulnerability Microsoft Teams Denial of Service Vulnerability