2025-12-09 17:56:06
microsoft
PUBLISHED
Improper neutralization of special elements used in a command (command injection) in Copilot allows an unauthorized attacker to execute code locally.