Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2026-48561

Improper neutralization of special elements used in a command ('command injection') in Microsoft Copilot allows an unauthorized attacker to execute code over a network.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.008
EPSS Ranking 51.3%
CVSS Severity
CVSS v3 Score 9.6
Products affected by CVE-2026-48561


Contact Us

Shodan ® - All rights reserved