CVE-2026-26164 - Vulnerability Details

- M365 Copilot Information Disclosure Vulnerability

Description

Improper neutralization of special elements used in a command ('command injection') in M365 Copilot allows an unauthorized attacker to disclose information over a network.

Published: 2026-05-07

Score: 7.5 High

EPSS: < 1% Very Low

KEV: No

Impact:

Action:

Analysis

Impact

Improper neutralization of special elements used in a command in M365 Copilot allows an unauthorized attacker to disclose information over a network. The flaw is a command injection—improper neutralization of special elements during command execution. If exploited, confidential information or system data could be exposed across the network, potentially allowing disclosure of business communications or internal state.

Affected Systems

Microsoft 365 Copilot Business Chat. No specific version range is provided in the advisory, but all deployments of the component are vulnerable until a vendor‑supplied fix is applied.

Risk and Exploitability

The CVSS score of 7.5 indicates high severity. The EPSS score of < 1% indicates a very low probability of exploitation, and the vulnerability is not listed in the CISA KEV catalog, suggesting no widespread active exploitation is reported yet. The likely attack vector is remote via the network: an unauthorized user can send malicious input to the chat interface and receive disallowed data in return. Because the flaw allows data disclosure without requiring privileged access or additional local exploits, the risk remains significant for any system that processes untrusted chat content.

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions

Microsoft

Microsoft 365 Copilot's Business Chat

affected

Version	Status	Constraints
`-`	affected	—

Configuration 1 [-]

cpe:2.3:a:microsoft:365_copilot_chat:-:*:*:*:*:*:*:*

No data.

Vendor Product Confidence Versions

Microsoft

365 Copilot Business Chat

95%

Version	Status	Scheme	Platform
`[0,*]`	affected	generic	—

Found an issue or want to improve our Enrichment? You can suggest it directly by opening an issue on our dedicated GitHub repository .

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

Apply the vendor patch: update Microsoft 365 Copilot to the latest release that includes the fix for the Business Chat component
Verify and enforce any available output sanitization settings for the chat feature to ensure special elements are neutralized
Monitor chat logs and outbound traffic for abnormal patterns indicating possible exploitation

Generated by OpenCVE AI on June 1, 2026 at 21:41 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact None

Availability Impact None

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

The EPSS score is 0.00799.

Exploitation none

Automatable yes

Technical Impact partial

References

Link	Providers
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-26164

History

Mon, 01 Jun 2026 19:00:00 +0000

Type	Values Removed	Values Added
Description	Improper neutralization of special elements in output used by a downstream component ('injection') in M365 Copilot allows an unauthorized attacker to disclose information over a network.	Improper neutralization of special elements used in a command ('command injection') in M365 Copilot allows an unauthorized attacker to disclose information over a network.

Fri, 08 May 2026 20:00:00 +0000

Type	Values Removed	Values Added
First Time appeared		Microsoft 365 Copilot Chat
CPEs		cpe:2.3:a:microsoft:365_copilot_chat:-:::::::*
Vendors & Products		Microsoft 365 Copilot Chat

Fri, 08 May 2026 14:15:00 +0000

Type	Values Removed	Values Added
Metrics		ssvc `{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}`

Thu, 07 May 2026 21:30:00 +0000

Type	Values Removed	Values Added
Description		Improper neutralization of special elements in output used by a downstream component ('injection') in M365 Copilot allows an unauthorized attacker to disclose information over a network.
Title		M365 Copilot Information Disclosure Vulnerability
First Time appeared		Microsoft Microsoft 365 Copilot Business Chat
Weaknesses		CWE-74
CPEs		cpe:2.3:a:microsoft:365_copilot_business_chat::::::::
Vendors & Products		Microsoft Microsoft 365 Copilot Business Chat
References		https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-26164
Metrics		cvssV3_1 `{'score': 7.5, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N/E:U/RL:O/RC:C'}`

Subscriptions

Microsoft 365 Copilot Business Chat 365 Copilot Chat

MITRE

Status: PUBLISHED

Assigner: microsoft

Published: 2026-05-07T20:58:09.538Z

Updated: 2026-06-19T16:13:13.674Z

Reserved: 2026-02-11T18:33:57.776Z

Link: CVE-2026-26164

Vulnrichment

Updated: 2026-05-08T13:51:57.730Z

NVD

Status : Modified

Published: 2026-05-07T22:16:33.773

Modified: 2026-06-17T10:25:51.017

Link: CVE-2026-26164

Redhat

No data.

OpenCVE Enrichment

Updated: 2026-06-01T21:45:22Z

Weaknesses

CWE-74
Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')

Impact

Affected Systems

Risk and Exploitability

Tracking

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact None

Availability Impact None

User Interaction None

Exploitation none

Automatable yes

Technical Impact partial

Subscriptions

JSON object

JSON object

JSON object

JSON object

JSON object