Microsoft disclosed a set of security flaws affecting cloud and AI services, including Microsoft 365 Copilot, Microsoft Copilot, Microsoft 365 Copilot BizChat, Azure DevOps, Azure Cloud Shell, Azure Data Factory, Microsoft Bing, and Microsoft Bing Images. The issues span information disclosure, elevation of privilege, tampering, and remote code execution, with published identifiers including CVE-2026-24299, CVE-2026-26136, CVE-2026-26137, CVE-2026-23658, CVE-2026-32169, CVE-2026-23659, CVE-2026-26120, and CVE-2026-32191. Germany's dCERT separately highlighted multiple vulnerabilities in Microsoft 365 Copilot, underscoring enterprise concern around AI-assisted productivity platforms.
The most severe issue in the group is CVE-2026-32191, a critical remote code execution flaw in Microsoft Bing Images. Public reporting tied the bug to OS command injection caused by improper neutralization of special elements in a command, potentially allowing an unauthenticated attacker to execute code over a network. Additional Bing exposure was tracked as CVE-2026-26120, a tampering vulnerability, while the Copilot-related flaws included both information disclosure and privilege escalation, indicating risk to data confidentiality and tenant-level access boundaries across Microsoft's hosted services.

Mallory correlates global threat intelligence with your attack surface — know if you’re exposed before adversaries strike.
14 events from the most recent confirmed update back to the earliest known activity.
A Microsoft-attributed listing for CVE-2026-47645 identifies a high-severity elevation of privilege vulnerability in Microsoft 365 Copilot's Business Chat with a CVSS 8.8 score. The record shows publication and last modification on 2026-06-19 and notes the issue is not remotely exploitable.
A Microsoft-sourced listing for CVE-2026-54130 identifies a critical information disclosure vulnerability in Microsoft 365 Copilot with a CVSS 9.8 score. The entry provides publication and modification timestamps of 2026-06-18 but does not include a textual description or affected version details.
Varonis disclosed SearchLeak, a critical vulnerability chain in Microsoft 365 Copilot Enterprise that could let attackers exfiltrate sensitive data from sources such as mailbox, OneDrive, and SharePoint via a crafted link. Microsoft assigned CVE-2026-42824 and had already fixed the issue earlier in June without requiring customer action.
Microsoft disclosed CVE-2026-33102, a critical open redirect vulnerability in Microsoft 365 Copilot, on 2026-04-23. The company said the cloud-service flaw had already been fully remediated server-side before disclosure and that no customer patching was required.
dCERT published Advisory 2026-0778 covering multiple vulnerabilities in Microsoft 365 Copilot. The advisory was published on 2026-03-20.
Microsoft's Security Update Guide lists CVE-2026-32191 as a Microsoft Bing Images Remote Code Execution Vulnerability. A Bugflation write-up additionally describes it as an OS command injection issue and notes XBOW's self-reported discovery claim.
Microsoft's Security Update Guide lists CVE-2026-32169 as an Azure Cloud Shell Elevation of Privilege Vulnerability. The advisory was published on 2026-03-19.
Microsoft's Security Update Guide lists CVE-2026-26137 as a Microsoft 365 Copilot BizChat Elevation of Privilege Vulnerability. The advisory was published on 2026-03-19.
Microsoft's Security Update Guide lists CVE-2026-26136 as a Microsoft Copilot Information Disclosure Vulnerability. The advisory was published on 2026-03-19.
Microsoft's Security Update Guide lists CVE-2026-26120 as a Microsoft Bing Tampering Vulnerability. The advisory was published on 2026-03-19.
Microsoft's Security Update Guide lists CVE-2026-24299 as an M365 Copilot Information Disclosure Vulnerability. The advisory was published on 2026-03-19.
Microsoft's Security Update Guide lists CVE-2026-23659 as an Azure Data Factory Information Disclosure Vulnerability. The advisory was published on 2026-03-19.
Microsoft's Security Update Guide lists CVE-2026-23658 as an Azure DevOps: msazure Elevation of Privilege Vulnerability. The advisory was published on 2026-03-19.
A newly disclosed vulnerability, CVE-2025-53787, was reported as affecting Microsoft 365 Copilot BizChat and potentially exposing sensitive business data to unauthorized parties. Public details were limited at disclosure, with no exploit code, exploitation flow, affected versions, or vulnerable configurations released.
Vulnerabilities, threat actors, malware, products, organizations, and breaches Mallory has linked to this story.
16 references tracked. Mallory keeps watching after this page renders.
cvefeed.io
Open sourcecvefeed.io
Open sourcecybersecuritynews.com
Open sourcebleepingcomputer.com
Open sourcemsrc.microsoft.com
Open sourcemsrc.microsoft.com
Open sourcemsrc.microsoft.com
Open sourcezeropath.com
Open sourceMap indicators from this story to your assets and identify affected systems in minutes.
Every observed campaign, victim, and pivot linked to actors named in this story.
Malware, exploits, and IOCs connected to the activity described here.
YARA, Sigma, and Snort rules deployed to your SIEM as soon as they’re published.
Get matching new stories delivered to your team as they break — not the next morning.
Ask questions about this story and take action on the answers.