Skip to main content

Microsoft Outlook For Ios

2 CVEs product

Monthly

CVE-2026-42893 HIGH PATCH Exploit Unlikely This Week

Improper neutralization of special elements used in a command ('command injection') in M365 Copilot allows an unauthorized attacker to perform tampering over a network.

Command Injection Microsoft Outlook For Ios
NVD VulDB
CVSS 3.1
7.4
EPSS
0.0%
CVE-2026-26133 HIGH PATCH This Week

CVE-2026-26133 is an AI command injection vulnerability in Microsoft 365 Copilot and multiple Microsoft mobile/desktop applications that allows remote attackers to disclose sensitive information through crafted AI prompts. The vulnerability affects numerous Microsoft products across iOS, Android, and macOS platforms, requires user interaction, and has a patch available from Microsoft with no current evidence of active exploitation (not in KEV).

Command Injection Microsoft 365 Copilot For Android Microsoft 365 Copilot For Ios Microsoft Edge For Android Microsoft Edge For Ios +16
NVD VulDB
CVSS 3.1
7.1
EPSS
0.1%
EPSS 0% CVSS 7.4
HIGH PATCH Exploit Unlikely This Week

Improper neutralization of special elements used in a command ('command injection') in M365 Copilot allows an unauthorized attacker to perform tampering over a network.

Command Injection Microsoft Outlook For Ios
NVD VulDB
EPSS 0% CVSS 7.1
HIGH PATCH This Week

CVE-2026-26133 is an AI command injection vulnerability in Microsoft 365 Copilot and multiple Microsoft mobile/desktop applications that allows remote attackers to disclose sensitive information through crafted AI prompts. The vulnerability affects numerous Microsoft products across iOS, Android, and macOS platforms, requires user interaction, and has a patch available from Microsoft with no current evidence of active exploitation (not in KEV).

Command Injection Microsoft 365 Copilot For Android Microsoft 365 Copilot For Ios +18
NVD VulDB

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy