Multiple vulnerabilities in Microsoft Apps

Описание

Multiple vulnerabilities were found in Microsoft Apps. Malicious users can exploit these vulnerabilities to obtain sensitive information, bypass security restrictions, gain privileges.

Below is a complete list of vulnerabilities:

1. An information disclosure vulnerability in Word Copilot can be exploited remotely to obtain sensitive information.
2. An information disclosure vulnerability in M365 Copilot can be exploited remotely to obtain sensitive information.

Первичный источник обнаружения

• CVE-2026-21521
  CVE-2026-24307
  

Связанные продукты

• Microsoft-Word
• Microsoft-365

Список CVE

• CVE-2026-21521
  high
• CVE-2026-24307
  critical

Смотрите также

Узнай статистику распространения уязвимостей в своем регионе statistics.securelist.com