CVE-2026-45497 | Microsoft 365 Copilot command injection

Inserito da Angelo Barbosa | Giu 4, 2026 | CVE

A vulnerability identified as critical has been detected in Microsoft 365 Copilot. The impacted element is an unknown function. This manipulation causes command injection.

The identification of this vulnerability is CVE-2026-45497. It is possible to initiate the attack remotely. There is no exploit available.

This product is a managed service. This means that users are not able to maintain vulnerability countermeasures themselves.

CVE-2026-45497 | Microsoft 365 Copilot command injection

Post correlati

CVE-2025-28371 | EnGenius ENH500 AP 3.7.22 Password Change access control

CVE-2025-49507 | LoftOcean CozyStay Plugin up to 1.7.0 on WordPress deserialization

CVE-2025-22679 | PickPlugins Job Board Manager Plugin up to 2.1.60 on WordPress cross site scripting

CVE-2024-32086 | AitThemes Citadela Listing Plugin up to 5.18.1 on WordPress information disclosure