Skip to content
Threat Feed
Subscribe

Tag

Copilot

4 briefs RSS
high threat

Microsoft 365 Copilot Multiple Vulnerabilities

A remote, anonymous attacker can exploit multiple vulnerabilities in Microsoft 365 Copilot to execute arbitrary program code and disclose confidential information.

Microsoft 365 Copilot microsoft365 copilot vulnerability code_execution information_disclosure
2r 2t
high advisory

CVE-2026-42893: M365 Copilot Command Injection Vulnerability

CVE-2026-42893 is a command injection vulnerability in M365 Copilot that allows an unauthorized attacker to perform tampering over a network.

M365 Copilot command-injection cve m365 copilot
1r 1t 1c
high advisory

Microsoft 365 Copilot Jailbreak Attempts via Prompt Injection

The detection identifies attempts to jailbreak Microsoft 365 Copilot through prompt injection techniques that attempt to circumvent built-in safety controls by manipulating rules, bypassing system commands, or requesting AI impersonation.

M365 Copilot prompt-injection ai-jailbreak m365 copilot
3r
medium advisory

M365 Copilot Access from Non-Compliant Devices

Detection of M365 Copilot access from non-compliant or unmanaged devices that violate corporate security policies, potentially indicating shadow IT, BYOD policy violations, or compromised endpoint access.

M365 Copilot microsoft365 copilot devicecompliance byod
2r