365 Copilot Chat
Sign in to watchby Microsoft
CVEs (2)
| CVE | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2026-26164 | Hig | 0.49 | 7.5 | 0.00 | May 7, 2026 | Improper neutralization of special elements in output used by a downstream component ('injection') in M365 Copilot allows an unauthorized attacker to disclose information over a network. | |
| CVE-2026-26129 | Hig | 0.49 | 7.5 | 0.00 | May 7, 2026 | Improper neutralization of special elements in M365 Copilot allows an unauthorized attacker to disclose information over a network. |