Mar 2026: Microsoft Bing Images Remote Code Execution Vulnerability
CVE-2026-32191 Published on March 19, 2026
Microsoft Bing Images Remote Code Execution Vulnerability
Improper neutralization of special elements used in an os command ('os command injection') in Microsoft Bing Images allows an unauthorized attacker to execute code over a network.
Weakness Type
What is a Shell injection Vulnerability?
The software constructs all or part of an OS command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended OS command when it is sent to a downstream component.
CVE-2026-32191 has been classified to as a Shell injection vulnerability or weakness.
Products Associated with CVE-2026-32191
Want to know whenever a new CVE is published for Microsoft Bing Images? stack.watch will email you.
