Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Copilot_studio
(Microsoft)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 3 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2024-10-09 | CVE-2024-43610 | Exposure of Sensitive Information to an Unauthorized Actor in Copilot Studio allows a unauthenticated attacker to view sensitive information through network attack vector | Copilot_studio | 7.5 | ||
| 2024-11-26 | CVE-2024-49038 | Improper neutralization of input during web page generation ('Cross-site Scripting') in Copilot Studio by an unauthorized attacker leads to elevation of privilege over a network. | Copilot_studio | 9.6 | ||
| 2024-08-06 | CVE-2024-38206 | An authenticated attacker can bypass Server-Side Request Forgery (SSRF) protection in Microsoft Copilot Studio to leak sensitive information over a network. | Copilot_studio | 6.5 |