CNNVD-202508-695 Information
Aug 07, 2025
cve
CNNVD ID
CNNVD-202508-695
Related CVE
- CNNVD Published: 2025-08-07
Description (Chinese)
Microsoft 365 Copilot BizChat是美国微软(Microsoft)公司的一个AI聊天软件。 Microsoft 365 Copilot BizChat存在命令注入漏洞,该漏洞源于命令中使用的特殊元素中和不当。攻击者利用该漏洞可以获取敏感信息。
Description (English)
Microsoft 365 Copilot BizChat is an AI chat software for Microsoft USA. Microsoft 365 Copilot BizChat has an order to inject a loophole, which stems from the inappropriateness of the particular elements used in the order. The attackers use that loophole to obtain sensitive information.
Hazard Level
Medium
Vulnerability Type
命令注入
Affected Vendor
微软
Published
2025-08-07
Last Modified
2026-02-24
References
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-53787
Patch
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-53787
Share on: