microsoft
Latest CVEs
The 15 most recently published vulnerabilities affecting microsoft.
- CVE-2026-49451Microsoft.OpenAPI: Circular schema references may terminate OpenAPI parsing7.5
- CVE-2025-66389GitHub Copilot 1.372.0 allows filesystem access outside of a workspace folder (without user approval) via a file-handler URI parameter to fetch_webpage. Therefore, exfiltration could occur if there...7.5
- CVE-2026-47645Microsoft 365 Copilot's Business Chat Elevation of Privilege Vulnerability8.8
- CVE-2026-48582Microsoft Exchange Online Elevation of Privilege Vulnerability9.6
- CVE-2026-50519Microsoft Visual Studio Code CoPilot Chat Security Feature Bypass Vulnerability6.5
- CVE-2026-48584Microsoft Azure Synapse Elevation of Privilege Vulnerability9.9
- CVE-2026-45480Azure Active Directory Elevation of Privilege Vulnerability10.0
- CVE-2026-42895Microsoft Copilot Tampering Vulnerability6.5
- CVE-2026-32208Microsoft Edge (Chromium-based) Spoofing Vulnerability8.8
- CVE-2025-62821Microsoft HEIF Image Extensions 1.2.22.0 has an out-of-bounds read because CHEIFItemInfoEntry_GetDataSize can return success while leaving the reported data size as 0. This causes a caller to make ...9.1
- CVE-2026-47647Dynamics 365 Elevation of Privilege Vulnerability9.9
- CVE-2026-54130M365 Copilot Information Disclosure Vulnerability9.8
- CVE-2026-32174Azure Bot Service Elevation of Privilege Vulnerability7.7
- CVE-2026-47633Microsoft Cost Management Information Disclosure Vulnerability7.5
- CVE-2026-50656Microsoft Defender Elevation of Privilege Vulnerability7.8