Critical server-side vulnerability in Microsoft Copilot Studio gives illegal access to internal infrastructure
The attack technique involves redirecting requests to the IMDS, enabling the retrieval of managed identity access tokens.
Other versions of this page are available with specific content for the following regions: