Every CVE whose affected-product data names Microsoft 365 Copilot, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (48)
CVE-2025-53766 — CVSS 9.8 (critical): Heap-based buffer overflow in Windows GDI+ allows an unauthorized attacker to execute code over a network.
CVE-2025-60724 — CVSS 9.8 (critical): Heap-based buffer overflow in Microsoft Graphics Component allows an unauthorized attacker to execute code over a network.
CVE-2026-54130 — CVSS 9.8 (critical): Missing authentication for critical function in M365 Copilot allows an unauthorized attacker to disclose information over a network.
CVE-2026-41090 — CVSS 9.3 (critical): Improper neutralization of special elements used in a command ('command injection') in Microsoft Copilot allows an unauthorized attacker to…
CVE-2025-32711 — CVSS 9.3 (critical): Ai command injection in M365 Copilot allows an unauthorized attacker to disclose information over a network.
CVE-2026-24307 — CVSS 9.3 (critical): Improper validation of specified type of input in M365 Copilot allows an unauthorized attacker to disclose information over a network.
CVE-2026-33102 — CVSS 9.3 (critical): Url redirection to untrusted site ('open redirect') in M365 Copilot allows an unauthorized attacker to elevate privileges over a network.
CVE-2026-41106 — CVSS 9.3 (critical): Url redirection to untrusted site ('open redirect') in M365 Copilot allows an unauthorized attacker to elevate privileges over a network.
CVE-2026-47645 — CVSS 8.8 (high): Url redirection to untrusted site ('open redirect') in Microsoft 365 Copilot's Business Chat allows an unauthorized attacker to elevate…
CVE-2026-45474 — CVSS 8.4 (high): Heap-based buffer overflow in Microsoft Office allows an unauthorized attacker to execute code locally.
CVE-2025-47167 — CVSS 8.4 (high): Access of resource using incompatible type ('type confusion') in Microsoft Office allows an unauthorized attacker to execute code locally.
CVE-2025-49696 — CVSS 8.4 (high): Out-of-bounds read in Microsoft Office allows an unauthorized attacker to execute code locally.
CVE-2025-49697 — CVSS 8.4 (high): Heap-based buffer overflow in Microsoft Office allows an unauthorized attacker to execute code locally.
CVE-2025-62554 — CVSS 8.4 (high): Access of resource using incompatible type ('type confusion') in Microsoft Office allows an unauthorized attacker to execute code locally.
CVE-2026-45472 — CVSS 8.4 (high): Heap-based buffer overflow in Microsoft Office allows an unauthorized attacker to execute code locally.
CVE-2026-45463 — CVSS 8.4 (high): Heap-based buffer overflow in Microsoft Office allows an unauthorized attacker to execute code locally.
CVE-2026-45461 — CVSS 8.4 (high): Heap-based buffer overflow in Microsoft Office allows an unauthorized attacker to execute code locally.
CVE-2026-26110 — CVSS 8.4 (high): Access of resource using incompatible type ('type confusion') in Microsoft Office allows an unauthorized attacker to execute code locally.
CVE-2026-40363 — CVSS 8.4 (high): Heap-based buffer overflow in Microsoft Office allows an unauthorized attacker to execute code locally.
CVE-2026-26134 — CVSS 7.8 (high): Integer overflow or wraparound in Microsoft Office allows an authorized attacker to elevate privileges locally.
CVE-2025-49702 — CVSS 7.8 (high): Access of resource using incompatible type ('type confusion') in Microsoft Office allows an unauthorized attacker to execute code locally.
CVE-2026-42831 — CVSS 7.8 (high): Heap-based buffer overflow in Microsoft Office allows an unauthorized attacker to execute code locally.
CVE-2026-42827 — CVSS 6.5 (medium): Improper neutralization of special elements used in a command ('command injection') in M365 Copilot allows an unauthorized attacker to…
CVE-2026-42895 — CVSS 6.5 (medium): Improper neutralization of special elements used in a command ('command injection') in Microsoft Copilot allows an unauthorized attacker to…
CVE-2026-41614 — CVSS 6.2 (medium): Improper access control in M365 Copilot for Desktop allows an unauthorized attacker to perform spoofing locally.
CVE-2026-25180 — CVSS 5.5 (medium): Out-of-bounds read in Microsoft Graphics Component allows an unauthorized attacker to disclose information locally.
CVE-2025-53799 — CVSS 5.5 (medium): Use of uninitialized resource in Windows Imaging Component allows an unauthorized attacker to disclose information locally.
CVE-2026-24299 — CVSS 5.3 (medium): Improper neutralization of special elements used in a command ('command injection') in M365 Copilot allows an unauthorized attacker to…
CVE-2026-45460 — CVSS 4.7 (medium): Out-of-bounds read in Microsoft Office allows an unauthorized attacker to disclose information locally.