HIGHVulnerability
Verified
Global

NVD HIGH: CVE-2026-26129 — Improper neutralization of special elements in M365 Copilot allows an unauthoriz...

·Source: NIST NVD

Updated:

Executive Summary

Improper neutralization of special elements in M365 Copilot allows an unauthorized attacker to disclose information over a network.

Analysis

Improper neutralization of special elements in M365 Copilot allows an unauthorized attacker to disclose information over a network. CVSS Score: 7.5. Published: 2026-05-07T22:16:33.607.

Indicators of Compromise (1)

CVE (1)
CVE-2026-26129
NVDMITRE CVE
Source Attribution

Originally published by NIST NVD on May 7, 2026. Verified by: NIST.

Related Threats

MEDIUMVulnerability

Fragnesia Local Privilege Escalation report via ESP-in-TCP in the Linux Kernel

<p><b>Bulletin ID:</b> 2026-029-AWS<br> <b>Scope:</b> AWS<br> <b>Content Type:</b> Important (requires attention)<br> <b>Publication Date:</b> 05/13/2026 18:45 PM PDT</p> <p><b>This is an ongoing issue. Information is subject to change. Please refer to our Security Bulletin (ID: 2026-030-AWS) for the most updated patching information.</b></p> <p><b>Description:</b></p> <p>Amazon is aware of CVE-20

CVE-2026-46300CVE-2026-43284
AWS Security Bulletins
LOWVulnerability

Ongoing updates on Copy.fail and variants

<p><b>Bulletin ID:</b> 2026-030-AWS<br> <b>Scope:</b> AWS<br> <b>Content Type:</b> Important (requires attention)<br> <b>Publication Date:</b> 05/13/2026 10:00 PM PDT</p> <p><b>This is an ongoing issue. This bulletin will be updated as more information becomes available.</b></p> <p><b>Description:</b></p> <p>AWS is aware of the copy.fail or DirtyFrag class of issues - a set of privilege escalation

AWS Security Bulletins
MEDIUMVulnerability

Bunq applies for Mexican banking license

Bunq, the European neobank for "global citizens", has applied for a Mexican banking license.

Finextra