Home

Description

AI command injection in M365 Copilot allows an unauthorized attacker to disclose information over a network.

PUBLISHED Reserved 2026-02-11 | Published 2026-03-13 | Updated 2026-03-13 | Assigner microsoft




HIGH: 7.1CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:L/A:N/E:U/RL:O/RC:C

Problem types

Information Disclosure

Product status

1.0 (custom) before 16.0.19815.10000
affected

1.0 (custom) before 2.107.2
affected

1.0.0 (custom) before 145.3800.99
affected

1.0.0.0 (custom) before 145.3800.99
affected

16.0.0.0 (custom) before 16.0.19822.20038
affected

1.0 (custom) before 2.106.26020617
affected

2.0.0 (custom) before 2.106.26020617
affected

1.0.0 (custom) before 2.106.26020617
affected

16.0.1 (custom) before 16.0.19725.20142
affected

1.0 (custom) before 5.2605
affected

1.0.0 (custom) before 5.2605
affected

1.0.0 (custom) before 5.2605
affected

2.0.0 (custom) before 2.2.260210.21290750
affected

1.0.0 (custom) before 1.2.260302.2193910
affected

16.0.0.0 (custom) before 16.0.19822.20038
affected

1.0 (custom) before 2.106.26020617
affected

1.0.0 (custom) before 1.0.0.2026043102
affected

2.0.0 (custom) before 8.3.1
affected

16.0.0.0 (custom) before 16.0.19822.20038
affected

2.0.0 (custom) before 2.106.26020617
affected

References

msrc.microsoft.com/update-guide/vulnerability/CVE-2026-26133 (M365 Copilot Information Disclosure Vulnerability) vendor-advisory patch

cve.org (CVE-2026-26133)

nvd.nist.gov (CVE-2026-26133)

Download JSON