High nvd · CVE-2026-26129

CVE-2026-26129: Improper neutralization of special elements in M365 Copilot allows an unauthorized attacker to disclose information over

Published May 7, 2026 CVSS 7.5

Improper neutralization of special elements in M365 Copilot allows an unauthorized attacker to disclose information over a network.

copilot

Get the weekly digest. Every Monday: top AI security stories of the week. Free.