Microsoft Security Response Center Follow CVE-2026-54130 M365 Copilot Information Disclosure Vulnerability Missing authentication for critical function in M365 Copilot allows an unauthorized attacker to disclose information over a network. https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-54130 msrc.microsoft.com
