SecBoard
Zurück zur CVE-Übersicht

CVE-2026-41106

CRITICAL(9.3)

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:N

Risk Signal Score28/100 — MITTEL
  • CVSS 9.3 — Kritisch

EPSS-Score

1%

Exploit-Wahrscheinlichkeit (30 Tage)

CVSS Score

9.3

Technische Schwere

Beschreibung

Url redirection to untrusted site ('open redirect') in M365 Copilot allows an unauthorized attacker to elevate privileges over a network.

Referenzen