CVE-2025-59272 | Microsoft 365 Copilot Business Chat command injection

A vulnerability identified as critical has been detected in Microsoft 365 Copilot Business Chat. Affected by this vulnerability is an unknown functionality. The manipulation leads to command injection.

This vulnerability is listed as CVE-2025-59272. The attack may be initiated remotely. There is no available exploit.

This product is a managed service, so users are unable to manage vulnerability countermeasures on their own.VulDB Recent EntriesRead More