Vulnerabilities3 min read
Microsoft Patches 3 Copilot Flaws That Leaked Sensitive Data
CVE-2026-26129, CVE-2026-26164, and CVE-2026-33111 allowed information disclosure via injection attacks in Microsoft 365 Copilot. No admin action required.
Marcus ChenMay 9, 2026