Tech News
Microsoft Copilot Studio Vulnerability Could Expose Sensitive Data
Microsoft’s AI flagship, Copilot Studio, was found to have a critical SSRF vulnerability that could potentially expose sensitive internal data to adversaries. Following a bug report, Microsoft promptly patched the flaw to ensure the security of its infrastructure.
SSRF Vulnerability Found In Microsoft Copilot Studio
A recent post from Tenable revealed a serious server-side request forgery (SSRF) vulnerability in Microsoft Copilot Studio.
Researchers discovered that a unique functionality of the tool allowed users to send HTTP requests as prompts. They tested this feature against Instance Metadata Service (IMDS) and Cosmos DB instances, eventually bypassing SSRF protection and accessing sensitive information.
The vulnerability, identified as CVE-2024-38206, received a critical severity rating and a CVSS score of 8.5. Tenable provided a detailed technical analysis of the vulnerability and its exploitation process.
Microsoft Patched The Vulnerability
Upon receiving the report from Tenable, Microsoft quickly addressed the vulnerability and credited the discovery to Evan Grant. The tech giant confirmed full mitigation in its advisory, requiring no action from users to receive the fix.
Share your thoughts in the comments section below.
5 Amazing Benefits Of Stacking Toy
Nordic founders are taking bigger swings, and it’s paying off
5 Apps To Speed Up Your Google TV Device
Trump threatens ABC News for reporter’s questions on his family business in Saudi Arabia, Khashoggi’s murder and Epstein files
The Best Sunglasses for Travel + Must Have Accessories » Local Adventurer » Travel Adventures in Las Vegas + World Wide
This Silent Habit Might Be Sabotaging Your Career
The Four Types of Happiness: Which One Are You Living In?
Halloween Events in London 2025
Join the peaceful demonstrations for democracy
Cute and Thankful Sayings for the People You Love
Croatia to reintroduce compulsory military draft as regional tensions soar
Singapore Airlines CEO set to join board of Air India, BA News, BA
Supernatural Season 16 Revival News, Cast, Plot and Release Date
How Your Contact Center Can Become A Customer Engagement Center
Bangladeshi police agents accused of selling citizens’ personal information on Telegram
Google Pixel 9 Pro vs Samsung Galaxy S25 Ultra: Camera Comparison Review
The Criterion Collection announces November 2024 releases, Seven Samurai 4K and more
Fallout Season 2 Potential Release Date, Cast, Plot and News
15 of the Best Trike & Tricycles Mums Recommend
17 Signs You Travel A Lot
-
Breaking News2 years agoCroatia to reintroduce compulsory military draft as regional tensions soar
-
Destination1 year agoSingapore Airlines CEO set to join board of Air India, BA News, BA
-
Gadgets1 year agoSupernatural Season 16 Revival News, Cast, Plot and Release Date
-
Productivity2 years agoHow Your Contact Center Can Become A Customer Engagement Center
-
Tech News2 years agoBangladeshi police agents accused of selling citizens’ personal information on Telegram
-
Gadgets10 months agoGoogle Pixel 9 Pro vs Samsung Galaxy S25 Ultra: Camera Comparison Review
-
Gaming2 years agoThe Criterion Collection announces November 2024 releases, Seven Samurai 4K and more
-
Gadgets10 months agoFallout Season 2 Potential Release Date, Cast, Plot and News