CVE-2024-43610: Copilot Studio Info Disclosure via Network
CVE-2024-43610 Published on October 9, 2024
Copilot Studio Information Disclosure Vulnerability
Exposure of Sensitive Information to an Unauthorized Actor in Copilot Studio allows a unauthenticated attacker to view sensitive information through network attack vector
Weakness Type
What is an Information Disclosure Vulnerability?
The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.
CVE-2024-43610 has been classified to as an Information Disclosure vulnerability or weakness.
Products Associated with CVE-2024-43610
You can be notified by email with stack.watch whenever vulnerabilities like CVE-2024-43610 are published in Microsoft Copilot Studio:
Affected Versions
Microsoft Copilot Studio Version N/A is affected by CVE-2024-43610Exploit Probability
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.