CNNVD-202508-688 Information
Aug 07, 2025
cve
CNNVD ID
CNNVD-202508-688
Related CVE
- CNNVD Published: 2025-08-07
Description (Chinese)
Microsoft 365 Copilot BizChat是美国微软(Microsoft)公司的一个AI聊天软件。 Microsoft 365 Copilot BizChat存在命令注入漏洞。该漏洞源于命令中使用的特殊元素中和不当。攻击者利用该漏洞可以获取敏感信息。
Description (English)
Microsoft 365 Copilot BizChat is an AI chat software for Microsoft USA. Microsoft 365 Copilot BizChat has a command leak. The loophole arises from the inappropriateness of the special elements used in the command. The attackers use that loophole to obtain sensitive information.
Hazard Level
High
Vulnerability Type
命令注入
Affected Vendor
微软
Published
2025-08-07
Last Modified
2026-02-24
References
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-53774
Patch
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-53774
Share on: