CVE-2026-42895— Microsoft Copilot Tampering Vulnerability
Possible ATT&CK Techniques 1AI
T1059 · Command and Scripting InterpreterGet alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2026-42895
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Microsoft Copilot Tampering Vulnerability
Source: NVD (National Vulnerability Database)
Vulnerability Description
Improper neutralization of special elements used in a command ('command injection') in Microsoft Copilot allows an unauthorized attacker to perform tampering over a network.
Source: NVD (National Vulnerability Database)
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N
Source: NVD (National Vulnerability Database)
Vulnerability Type
在命令中使用的特殊元素转义处理不恰当(命令注入)
Source: NVD (National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| Microsoft | Microsoft 365 Copilot | - | - |
II. Public POCs for CVE-2026-42895
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2026-42895
请登录查看更多情报信息。
Vendor Advisories for CVE-2026-42895 (1)
Same Patch Batch · Microsoft · 2026-06-19 · 8 CVEs total
| CVE-2026-45480 | 10.0 CRITICAL | Azure Active Directory Elevation of Privilege Vulnerability |
| CVE-2026-48584 | 9.9 CRITICAL | Microsoft Azure Synapse Elevation of Privilege Vulnerability |
| CVE-2026-48582 | 9.6 CRITICAL | Microsoft Exchange Online Elevation of Privilege Vulnerability |
| CVE-2026-47645 | 8.8 HIGH | Microsoft 365 Copilot's Business Chat Elevation of Privilege Vulnerability |
| CVE-2026-32208 | 8.8 HIGH | Microsoft Edge (Chromium-based) Spoofing Vulnerability |
| CVE-2026-50519 | 6.5 MEDIUM | Microsoft Visual Studio Code CoPilot Chat Security Feature Bypass Vulnerability |
| CVE-2026-49336 | @microsoft/kiota-http-fetchlibrary: Bearer token and Cookie leak across origin on redirect |
IV. Related Vulnerabilities
Same product: Microsoft 365 Copilot
- CVE-2026-47645
Microsoft 365 Copilot's Business Chat Elevation of Privilege - CVE-2026-54130
M365 Copilot Information Disclosure Vulnerability - CVE-2026-45497
Microsoft M365 Copilot Remote Code Execution Vulnerability - CVE-2026-42824
M365 Copilot Information Disclosure Vulnerability - CVE-2026-42827
M365 Copilot Information Disclosure Vulnerability
Same vendor: Microsoft
- CVE-2026-47645
Microsoft 365 Copilot's Business Chat Elevation of Privilege - CVE-2026-48582
Microsoft Exchange Online Elevation of Privilege Vulnerabili - CVE-2026-50519
Microsoft Visual Studio Code CoPilot Chat Security Feature B - CVE-2026-48584
Microsoft Azure Synapse Elevation of Privilege Vulnerability - CVE-2026-45480
Azure Active Directory Elevation of Privilege Vulnerability
Same weakness: CWE-77
- CVE-2024-24909
Dell OpenManage Integration with Microsoft Windows Admin Cen - CVE-2026-12223
Yealink SIP-T46U Web FastCGI Service tftpuploadiperf mod_web - CVE-2026-12219
Yealink SIP-T46U Web FastCGI Service start mod_diagnose.Comm - CVE-2026-12197
Ruijie EG105G-P JSON-RPC Diagnose Endpoint diagnose nslookup - CVE-2026-12187
GL.iNet GL-MT3000 Online Firmware Upgrade one_click_upgrade
V. Comments for CVE-2026-42895
No comments yet