WID-SEC-W-2026-1792

Vulnerability from csaf_certbund - Published: 2026-06-04 22:00 - Updated: 2026-06-15 22:00
Summary
Microsoft Clouddienste: Mehrere Schwachstellen ermöglichen Privilegieneskalation
Severity
Kritisch
Notes
Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.
Produktbeschreibung: Azure ist eine Cloud Computing-Plattform von Microsoft. Exchange ist ein Groupware und Nachrichtensystem der Firma Microsoft. Microsoft Copilot ist ein KI-Assistent, der in verschiedene Microsoft-Produkte integriert werden kann. Edge ist ein Web Browser von Microsoft.
Angriff: Ein Angreifer kann mehrere Schwachstellen in verschiedenen Microsoft Clouddiensten wie Azure HorizonDB, Exchange Online, 365 Copilot und dem Copilot Chat in Edge ausnutzen, um seine Privilegien zu erweitern, um beliebigen Code auszuführen und um Informationen offenzulegen.
Betroffene Betriebssysteme: - Windows
CVE-2026-42824
Affected products
Product Identifier Version Remediation
Microsoft Edge Copilot Chat
Microsoft / Edge
 cpe:/a:microsoft:edge:copilot_chat Copilot Chat
Microsoft 365 Copilot
Microsoft
 cpe:/a:microsoft:365_copilot:-
Microsoft Exchange Online
Microsoft / Exchange
 cpe:/a:microsoft:exchange:online Online
Microsoft Azure HorizonDB
Microsoft / Azure
 cpe:/a:microsoft:azure:horizondb HorizonDB
CVE-2026-45497
Affected products
Product Identifier Version Remediation
Microsoft Edge Copilot Chat
Microsoft / Edge
 cpe:/a:microsoft:edge:copilot_chat Copilot Chat
Microsoft 365 Copilot
Microsoft
 cpe:/a:microsoft:365_copilot:-
Microsoft Exchange Online
Microsoft / Exchange
 cpe:/a:microsoft:exchange:online Online
Microsoft Azure HorizonDB
Microsoft / Azure
 cpe:/a:microsoft:azure:horizondb HorizonDB
CVE-2026-47644
Affected products
Product Identifier Version Remediation
Microsoft Edge Copilot Chat
Microsoft / Edge
 cpe:/a:microsoft:edge:copilot_chat Copilot Chat
Microsoft 365 Copilot
Microsoft
 cpe:/a:microsoft:365_copilot:-
Microsoft Exchange Online
Microsoft / Exchange
 cpe:/a:microsoft:exchange:online Online
Microsoft Azure HorizonDB
Microsoft / Azure
 cpe:/a:microsoft:azure:horizondb HorizonDB
CVE-2026-47655
Affected products
Product Identifier Version Remediation
Microsoft Edge Copilot Chat
Microsoft / Edge
 cpe:/a:microsoft:edge:copilot_chat Copilot Chat
Microsoft 365 Copilot
Microsoft
 cpe:/a:microsoft:365_copilot:-
Microsoft Exchange Online
Microsoft / Exchange
 cpe:/a:microsoft:exchange:online Online
Microsoft Azure HorizonDB
Microsoft / Azure
 cpe:/a:microsoft:azure:horizondb HorizonDB
CVE-2026-48567
Affected products
Product Identifier Version Remediation
Microsoft Edge Copilot Chat
Microsoft / Edge
 cpe:/a:microsoft:edge:copilot_chat Copilot Chat
Microsoft 365 Copilot
Microsoft
 cpe:/a:microsoft:365_copilot:-
Microsoft Exchange Online
Microsoft / Exchange
 cpe:/a:microsoft:exchange:online Online
Microsoft Azure HorizonDB
Microsoft / Azure
 cpe:/a:microsoft:azure:horizondb HorizonDB
CVE-2026-48579
Affected products
Product Identifier Version Remediation
Microsoft Edge Copilot Chat
Microsoft / Edge
 cpe:/a:microsoft:edge:copilot_chat Copilot Chat
Microsoft 365 Copilot
Microsoft
 cpe:/a:microsoft:365_copilot:-
Microsoft Exchange Online
Microsoft / Exchange
 cpe:/a:microsoft:exchange:online Online
Microsoft Azure HorizonDB
Microsoft / Azure
 cpe:/a:microsoft:azure:horizondb HorizonDB
References
To clipboard 

{
  "document": {
    "aggregate_severity": {
      "text": "kritisch"
    },
    "category": "csaf_base",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "de-DE",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
      },
      {
        "category": "description",
        "text": "Azure ist eine Cloud Computing-Plattform von Microsoft.\r\nExchange ist ein Groupware und Nachrichtensystem der Firma Microsoft.\r\nMicrosoft Copilot ist ein KI-Assistent, der in verschiedene Microsoft-Produkte integriert werden kann.\r\nEdge ist ein Web Browser von Microsoft.",
        "title": "Produktbeschreibung"
      },
      {
        "category": "summary",
        "text": "Ein Angreifer kann mehrere Schwachstellen in verschiedenen Microsoft Clouddiensten wie Azure HorizonDB, Exchange Online, 365 Copilot und dem Copilot Chat in Edge ausnutzen, um seine Privilegien zu erweitern, um beliebigen Code auszuf\u00fchren und um Informationen offenzulegen.",
        "title": "Angriff"
      },
      {
        "category": "general",
        "text": "- Windows",
        "title": "Betroffene Betriebssysteme"
      }
    ],
    "publisher": {
      "category": "other",
      "contact_details": "csaf-provider@cert-bund.de",
      "name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "namespace": "https://www.bsi.bund.de"
    },
    "references": [
      {
        "category": "self",
        "summary": "WID-SEC-W-2026-1792 - CSAF Version",
        "url": "https://wid.cert-bund.de/.well-known/csaf/white/2026/wid-sec-w-2026-1792.json"
      },
      {
        "category": "self",
        "summary": "WID-SEC-2026-1792 - Portal Version",
        "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2026-1792"
      },
      {
        "category": "external",
        "summary": "Microsoft Security Advisory CVE-2026-48579 vom 2026-06-04",
        "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-48579"
      },
      {
        "category": "external",
        "summary": "Microsoft Security Advisory CVE-2026-48567 vom 2026-06-04",
        "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-48567"
      },
      {
        "category": "external",
        "summary": "Microsoft Security Advisory CVE-2026-47655 vom 2026-06-04",
        "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-47655"
      },
      {
        "category": "external",
        "summary": "Microsoft Security Advisory CVE-2026-42824 vom 2026-06-04",
        "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-42824"
      },
      {
        "category": "external",
        "summary": "Microsoft Security Advisory CVE-2026-45497 vom 2026-06-04",
        "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-45497"
      },
      {
        "category": "external",
        "summary": "Microsoft Security Advisory CVE-2026-47644 vom 2026-06-04",
        "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-47644"
      },
      {
        "category": "external",
        "summary": "PoC Varonis CVE-2026-42824 vom 2026-06-15",
        "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-47644"
      }
    ],
    "source_lang": "en-US",
    "title": "Microsoft Clouddienste: Mehrere Schwachstellen erm\u00f6glichen Privilegieneskalation",
    "tracking": {
      "current_release_date": "2026-06-15T22:00:00.000+00:00",
      "generator": {
        "date": "2026-06-16T07:09:51.864+00:00",
        "engine": {
          "name": "BSI-WID",
          "version": "1.6.0"
        }
      },
      "id": "WID-SEC-W-2026-1792",
      "initial_release_date": "2026-06-04T22:00:00.000+00:00",
      "revision_history": [
        {
          "date": "2026-06-04T22:00:00.000+00:00",
          "number": "1",
          "summary": "Initiale Fassung"
        },
        {
          "date": "2026-06-15T22:00:00.000+00:00",
          "number": "2",
          "summary": "PoC aufgenommen CVE-2026-42824"
        }
      ],
      "status": "final",
      "version": "2"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Microsoft 365 Copilot",
            "product": {
              "name": "Microsoft 365 Copilot",
              "product_id": "T053296",
              "product_identification_helper": {
                "cpe": "cpe:/a:microsoft:365_copilot:-"
              }
            }
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "HorizonDB",
                "product": {
                  "name": "Microsoft Azure HorizonDB",
                  "product_id": "T055006",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:microsoft:azure:horizondb"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Azure"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "Copilot Chat",
                "product": {
                  "name": "Microsoft Edge Copilot Chat",
                  "product_id": "T053782",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:microsoft:edge:copilot_chat"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Edge"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "Online",
                "product": {
                  "name": "Microsoft Exchange Online",
                  "product_id": "T055007",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:microsoft:exchange:online"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Exchange"
          }
        ],
        "category": "vendor",
        "name": "Microsoft"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2026-42824",
      "product_status": {
        "known_affected": [
          "T053782",
          "T053296",
          "T055007",
          "T055006"
        ]
      },
      "release_date": "2026-06-04T22:00:00.000+00:00",
      "title": "CVE-2026-42824"
    },
    {
      "cve": "CVE-2026-45497",
      "product_status": {
        "known_affected": [
          "T053782",
          "T053296",
          "T055007",
          "T055006"
        ]
      },
      "release_date": "2026-06-04T22:00:00.000+00:00",
      "title": "CVE-2026-45497"
    },
    {
      "cve": "CVE-2026-47644",
      "product_status": {
        "known_affected": [
          "T053782",
          "T053296",
          "T055007",
          "T055006"
        ]
      },
      "release_date": "2026-06-04T22:00:00.000+00:00",
      "title": "CVE-2026-47644"
    },
    {
      "cve": "CVE-2026-47655",
      "product_status": {
        "known_affected": [
          "T053782",
          "T053296",
          "T055007",
          "T055006"
        ]
      },
      "release_date": "2026-06-04T22:00:00.000+00:00",
      "title": "CVE-2026-47655"
    },
    {
      "cve": "CVE-2026-48567",
      "product_status": {
        "known_affected": [
          "T053782",
          "T053296",
          "T055007",
          "T055006"
        ]
      },
      "release_date": "2026-06-04T22:00:00.000+00:00",
      "title": "CVE-2026-48567"
    },
    {
      "cve": "CVE-2026-48579",
      "product_status": {
        "known_affected": [
          "T053782",
          "T053296",
          "T055007",
          "T055006"
        ]
      },
      "release_date": "2026-06-04T22:00:00.000+00:00",
      "title": "CVE-2026-48579"
    }
  ]
}


Log in or create an account to share your comment.




Tags
Taxonomy of the tags.





Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.

Sightings

Author Source Type Date Other

Nomenclature

  • Seen: The vulnerability was mentioned, discussed, or observed by the user.
  • Confirmed: The vulnerability has been validated from an analyst's perspective.
  • Published Proof of Concept: A public proof of concept is available for this vulnerability.
  • Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
  • Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
  • Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
  • Not confirmed: The user expressed doubt about the validity of the vulnerability.
  • Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.


Detection rules are retrieved from Rulezet.