CVE-2025-59252 — Vulnetix

CVE-2025-59252 PUBLISHED CVSS 9.300000190734863 CRITICAL

M365 Copilot Spoofing Vulnerability

EPSS 0.11% · 28.7th percentile

Risk Scores

CVSS v3.1

9.300000190734863

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:L/A:N/E:U/RL:O/RC:C

EPSS Score

0.11%

28.7th percentile

Affected Products

Vendor	Product	Versions
microsoft	365_word_copilot	-
Microsoft	Microsoft 365 Word Copilot	-

Timeline

Oct 9, 2025 CVE Published
Oct 9, 2025 PoC Published
Oct 10, 2025 EPSS Score
Oct 14, 2025 PoC Published
Oct 16, 2025 EPSS Score
Oct 22, 2025 EPSS Score
Oct 29, 2025 EPSS Score
Nov 4, 2025 EPSS Score
Nov 10, 2025 EPSS Score
Nov 16, 2025 EPSS Score
Nov 22, 2025 PoC Published
Nov 23, 2025 EPSS Score

References

M365 Copilot Information Disclosure Vulnerability vendor-advisory
https://nvd.nist.gov/vuln/detail/CVE-2025-59252 advisory

Open in Interactive Console →

$ Console Community · 100/wk Open console ›