M365 Change Tracker

← All changes · security · CVE-2026-54130

CVE-2026-54130CriticalMonitor

M365 Copilot Information Disclosure Vulnerability

Severity Critical  ·  Urgency Monitor

Why it matters: Critical severity (CVSS 9.8)

Information Disclosure · Critical · CVSS 9.8. Affects: Microsoft 365 Copilot.

CVSS 9.8EPSS 0.5%Update published 2026-06-23Source updated 2026-06-23NVD

Affected: Microsoft 365 Copilot

Change history

2026-06-23 · First seen

View at Microsoft →