Skip to main content

Microsoft 365 Copilot CVE-2026-47645

| EUVD-2026-38091 HIGH
URL Redirection to Untrusted Site (Open Redirect) (CWE-601)
2026-06-19 secure@microsoft.com GHSA-vwmm-7w98-r7p2
Microsoft Open Redirect
8.8
CVSS 3.1 · Vendor: microsoft
Temporal: 7.7
Share

Severity by source

Vendor (microsoft) PRIMARY
8.8 HIGH
AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
CIRCL (temporal)
7.7 HIGH
cvss
vuln.today AI
8.8 HIGH

Network-reachable Copilot endpoint with no attacker auth (PR:N) but mandatory victim click (UI:R); redirect-to-token-theft chain credibly yields full CIA impact on the tenant account.

3.1 AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
4.0 AV:N/AC:L/AT:N/PR:N/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Primary rating from Vendor (microsoft).

CVSS VectorVendor: microsoft

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
Required
Scope
Unchanged
Confidentiality
High
Integrity
High
Availability
High

Lifecycle Timeline

2
Analysis Generated
Jun 19, 2026 - 21:40 vuln.today
CVE Published
Jun 19, 2026 - 21:16 nvd
HIGH 8.8

DescriptionCVE.org

Url redirection to untrusted site ('open redirect') in Microsoft 365 Copilot's Business Chat allows an unauthorized attacker to elevate privileges over a network.

AnalysisAI

Privilege elevation in Microsoft 365 Copilot's Business Chat is possible when an attacker abuses an open redirect (CWE-601) to coerce a victim into following a crafted link that lands on an attacker-controlled site. With a CVSS 3.1 base score of 8.8 and high impact across confidentiality, integrity, and availability, successful exploitation lets an unauthorized remote attacker elevate privileges over the network after user interaction. …

Unlock full vulnerability intelligence

  • Risk assessment & exploitation conditions
  • Attack chain visualization
  • Remediation with exact patch versions
  • Threat intelligence from 22 sources
  • Personal watchlist & email alerts
Continue with Google Continue with GitHub

Free forever · No credit card required

Attack ChainAIDerived

Hypothetical attack flow derived from CVE metadata

Recon
Identify M365 Copilot user
Delivery
Craft open-redirect link via BizChat
Exploit
Deliver link to victim
Install
Victim clicks trusted Microsoft URL
C2
Redirect to attacker phishing site
Execute
Capture credentials or OAuth tokens
Impact
Replay tokens to elevate tenant privileges
Sign in to reveal

Vulnerability AssessmentAI

Exploitation Exploitation requires that the target be a licensed Microsoft 365 Copilot user with access to Business Chat and that the victim click an attacker-supplied link rendered or delivered through that surface (UI:R is mandatory in the CVSS vector). … Additional conditions and limiting factors are described in the full assessment.
Risk Assessment The CVSS 3.1 vector AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H is unusually severe for an open redirect because Microsoft is asserting that the redirect chain yields high impact on confidentiality, integrity, and availability - almost certainly because the post-redirect step leads to token or session theft enabling account takeover within the M365 tenant. … Full risk analysis with EPSS, KEV, and SSVC signal comparison available after sign-in.
Exploit Scenario An attacker crafts a Copilot Business Chat prompt or shared artifact that causes Copilot to surface a link routed through the vulnerable Microsoft redirector, then delivers that link to a target via email or Teams. The victim clicks, trusts the Microsoft-branded URL, and is silently redirected to an attacker-controlled site that mimics the Microsoft 365 sign-in flow or triggers an OAuth consent prompt, yielding session tokens that the attacker replays to elevate privileges within the tenant. …
Remediation Patch available per vendor advisory - because Microsoft 365 Copilot Business Chat is a cloud service, Microsoft deploys the fix server-side and tenants do not need to install an update; administrators should confirm remediation status against the MSRC entry at https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-47645. … Detailed patch versions, workarounds, and compensating controls in full report.
Sign in to read full assessment

Recommended ActionAI

Within 24 hours: Inventory all users and teams with Microsoft 365 Copilot Business Chat access; document business-critical use cases and data flows. …

Sign in for detailed remediation steps and compensating controls.

Threat intelligence, references, and detailed analysis are available after sign-in.

More from same product – last 7 days

CVE-2026-35259 HIGH
8.8 Jun 16

Full takeover of Oracle WebLogic Server 14.1.2.0.0 and 15.1.1.0.0 is achievable by remote unauthenticated attackers via

CVE-2026-35258 HIGH
8.7 Jun 16

Cross-scope data compromise in Oracle WebLogic Server 14.1.2.0.0 and 15.1.1.0.0 allows a low-privileged remote attacker

CVE-2026-35302 HIGH
8.3 Jun 16

Server takeover in Oracle WebLogic Server 12.2.1.4.0 and 14.1.1.0.0 (Console component) allows a remote unauthenticated

CVE-2026-46806 HIGH
8.2 Jun 16

Cross-context compromise of Oracle WebCenter Content 14.1.2.0.0 (Content Server component) allows a remote unauthenticat
CVE-2026-46894 HIGH
8.0 Jun 16

Account takeover in Oracle iSupplier Portal (E-Business Suite versions 12.2.3-12.2.15) allows a low-privileged remote at

Share

CVE-2026-47645 vulnerability details – vuln.today
Back

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy