VYPR
Unrated severityNVD Advisory· Published Oct 9, 2025· Updated Feb 26, 2026

Copilot Information Disclosure Vulnerability

CVE-2025-59286

Description

Improper neutralization of special elements used in a command ('command injection') in Copilot allows an unauthorized attacker to disclose information over a network.

Affected products

1

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.