High severity8.5NVD Advisory· Published Aug 6, 2024· Updated Jun 17, 2026
CVE-2024-38206
CVE-2024-38206
Description
An authenticated attacker can bypass Server-Side Request Forgery (SSRF) protection in Microsoft Copilot Studio to leak sensitive information over a network.
Affected products
2- Microsoft/Microsoft Copilot Studiov5Range: N/A
Patches
Vulnerability mechanics
References
1- msrc.microsoft.com/update-guide/vulnerability/CVE-2024-38206nvdPatchVendor Advisory
News mentions
0No linked articles in our index yet.