MediumCVEMicrosoft MSRC — security update guide· 23 Apr 2026
CVE-2026-33102 Microsoft 365 Copilot Elevation of Privilege Vulnerability
Severity: Medium · Kind: Vulnerability
Plain-English summary on the way
We've ingested this item but haven't summarised it yet. Read the upstream advisory using the link below in the meantime — the AI summary will appear here once the next run completes.
From the source
Url redirection to untrusted site ('open redirect') in M365 Copilot allows an unauthorized attacker to elevate privileges over a network.
Was this useful?
Plain-English summaries are AI-generated and reviewed for tone, not technical accuracy. For incident response, always rely on the original source linked above.