Kaspersky ID:
KLA91149
検出日:
07/14/2026
更新日:
07/15/2026

説明

Multiple vulnerabilities were found in Microsoft Copilot Plugin. Malicious users can exploit these vulnerabilities to bypass security restrictions, execute arbitrary code, spoof user interface.

Below is a complete list of vulnerabilities:

  1. A remote code execution vulnerability in GitHub Copilot can be exploited remotely to execute arbitrary code.
  2. A remote code execution vulnerability in Game: Age of Empires II: Definitive Edition can be exploited remotely to execute arbitrary code.
  3. A remote code execution vulnerability in Minecraft Bedrock Dedicated Server can be exploited remotely to execute arbitrary code.
  4. A tampering vulnerability in Outlook Copilot can be exploited remotely to spoof user interface.

オリジナルアドバイザリー

CVEリスト

  • CVE-2026-50663
    critical
  • CVE-2026-50510
    critical
  • CVE-2026-55010
    unknown
  • CVE-2026-55145
    unknown

も参照してください

お住まいの地域に広がる脆弱性の統計をご覧ください statistics.securelist.com

この脆弱性についての記述に不正確な点がありますか? お知らせください!
Kaspersky IT Security Calculator
も参照してください
新しいカスペルスキー
あなたのデジタルライフを守る
も参照してください
Do you want to save your changes?
Your message has been sent successfully.