VYPR
patchPublished Jun 18, 2026· Updated Jun 19, 2026· 1 source

Microsoft Cloud Batch: Four CVEs Across Copilot, Dynamics 365, Azure Bot Service, and Cost Management

Key findings • Four CVEs disclosed together on June 18, 2026 across Dynamics 365, M365 Copilot, Azure Bot Service, and Cost Management • Two elevation-of-privilege bugs (CVE-2026-47647, CVE-2…

Key findings

  • Four CVEs disclosed together on June 18, 2026 across Dynamics 365, M365 Copilot, Azure Bot Service, and Cost Management
  • Two elevation-of-privilege bugs (CVE-2026-47647, CVE-2026-32174) require prior authentication
  • Two information-disclosure flaws (CVE-2026-54130, CVE-2026-47633) are exploitable without authentication
  • No active exploitation reported at disclosure; fixes included in June 2026 Patch Tuesday
  • Batch highlights attack surface expansion into AI copilots and cost management tools

Microsoft shipped fixes for four vulnerabilities across its cloud and AI portfolio on June 18, 2026, all disclosed in a single coordinated advisory window. The batch spans two elevation-of-privilege bugs and two information-disclosure flaws, affecting Dynamics 365, M365 Copilot, Azure Bot Service, and Cost Management. While none of the CVEs carry a public exploitation report at disclosure, the breadth of the affected services — from ERP to AI assistants to cloud cost tooling — makes the batch notable for enterprise defenders managing multi-product Microsoft tenants.

Two of the four CVEs are elevation-of-privilege vulnerabilities. CVE-2026-47647 affects Microsoft Dynamics 365 and stems from improper access control, allowing an authorized attacker to escalate privileges over the network. CVE-2026-32174 targets Azure Bot Service and is rooted in improper authentication, similarly enabling an authorized attacker to elevate privileges. Both require the attacker to already hold some level of authenticated access, but once exploited could grant broader control over the affected service.

The other two CVEs are information-disclosure flaws. CVE-2026-54130 in M365 Copilot involves missing authentication for a critical function, allowing an unauthorized attacker to disclose information over the network. CVE-2026-47633 in Microsoft Cost Management Interactive Experiences exposes sensitive information to an unauthorized actor, also enabling network-based information disclosure. These two bugs are particularly concerning because they do not require prior authentication, widening the potential attack surface.

Microsoft has not reported active exploitation of any of the four CVEs in the wild as of the disclosure date. The vulnerabilities were disclosed through Microsoft's standard coordinated vulnerability disclosure process and were addressed in the company's June 2026 Patch Tuesday release cycle. Affected customers should apply the latest security updates for each product through Microsoft Update or their respective service admin portals.

For organizations running Microsoft cloud services, this batch underscores the importance of treating every service component — including AI copilots and cost management interfaces — as part of the attack surface. The presence of two unauthenticated information-disclosure bugs in M365 Copilot and Cost Management is a reminder that even administrative or reporting tools can leak sensitive data if authentication checks are missing. Security teams should prioritize patching these services, especially in multi-tenant or externally facing deployments.

Synthesized by Vypr AI