CVE-2024-43610: Copilot Studio Info Disclosure via Network
CVE-2024-43610 Published on October 9, 2024
Copilot Studio Information Disclosure Vulnerability
Exposure of Sensitive Information to an Unauthorized Actor in Copilot Studio allows a unauthenticated attacker to view sensitive information through network attack vector
Weakness Type
What is an Information Disclosure Vulnerability?
The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.
CVE-2024-43610 has been classified to as an Information Disclosure vulnerability or weakness.
Products Associated with CVE-2024-43610
Want to know whenever a new CVE is published for Microsoft Copilot Studio? stack.watch will email you.
Affected Versions
Microsoft Copilot Studio Version N/A is affected by CVE-2024-43610Exploit Probability
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.