Kaspersky ID:
KLA91149
Fecha de detección:
07/14/2026
Actualizado:
07/15/2026

Descripción

Multiple vulnerabilities were found in Microsoft Copilot Plugin. Malicious users can exploit these vulnerabilities to bypass security restrictions, execute arbitrary code, spoof user interface.

Below is a complete list of vulnerabilities:

  1. A remote code execution vulnerability in GitHub Copilot can be exploited remotely to execute arbitrary code.
  2. A remote code execution vulnerability in Game: Age of Empires II: Definitive Edition can be exploited remotely to execute arbitrary code.
  3. A remote code execution vulnerability in Minecraft Bedrock Dedicated Server can be exploited remotely to execute arbitrary code.
  4. A tampering vulnerability in Outlook Copilot can be exploited remotely to spoof user interface.

Notas informativas originales

Lista CVE

  • CVE-2026-50663
    critical
  • CVE-2026-50510
    critical
  • CVE-2026-55010
    unknown
  • CVE-2026-55145
    unknown

Leer más

Conozca las estadísticas de las vulnerabilidades que se propagan en su región statistics.securelist.com

¿Has encontrado algún error en la descripción de esta vulnerabilidad? ¡Háznoslo saber!
Kaspersky Next:
ciberseguridad redefinida
Leer más
Nuevo Kaspersky
¡Su vida digital merece una protección completa!
Leer más
Do you want to save your changes?
Your message has been sent successfully.