Known Vulnerabilities for Microsoft 365 Copilot For IOS by Microsoft
Listed below are 7 of the newest known vulnerabilities associated with "Microsoft 365 Copilot For IOS" by "Microsoft".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-47645 json | Url redirection to untrusted site ('open redirect') in Microsoft 365 Copilot's Business Chat allows an unauthorized attacker ... | Not Provided | 2026-06-19 | 2026-06-22 |
| CVE-2026-47644 json | Improper neutralization of special elements in output used by a downstream component ('injection') in Copilot Chat (Microsoft... | Not Provided | 2026-06-04 | 2026-06-06 |
| CVE-2026-45497 json | Improper neutralization of special elements used in a command ('command injection') in Microsoft Copilot allows an authorized... | Not Provided | 2026-06-04 | 2026-06-06 |
| CVE-2026-42895 json | Improper neutralization of special elements used in a command ('command injection') in Microsoft Copilot allows an unauthoriz... | Not Provided | 2026-06-19 | 2026-06-23 |
| CVE-2026-41090 json | Improper neutralization of special elements used in a command ('command injection') in Microsoft Copilot allows an unauthoriz... | Not Provided | 2026-05-22 | 2026-05-27 |
| CVE-2026-33111 json | Improper neutralization of special elements used in a command ('command injection') in Copilot Chat (Microsoft Edge) allows a... | Not Provided | 2026-05-07 | 2026-05-13 |
| CVE-2026-26136 json | Improper neutralization of special elements used in a command ('command injection') in Microsoft Copilot allows an unauthoriz... | Not Provided | 2026-03-19 | 2026-03-27 |