{
  "document" : {
    "aggregate_severity" : {
      "text" : "kritisch"
    },
    "category" : "csaf_base",
    "csaf_version" : "2.0",
    "distribution" : {
      "tlp" : {
        "label" : "WHITE",
        "url" : "https://www.first.org/tlp/"
      }
    },
    "lang" : "de-DE",
    "notes" : [ {
      "category" : "legal_disclaimer",
      "text" : "Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen."
    }, {
      "category" : "description",
      "text" : "Azure ist eine Cloud Computing-Plattform von Microsoft.\r\nExchange ist ein Groupware und Nachrichtensystem der Firma Microsoft.\r\nMicrosoft Copilot ist ein KI-Assistent, der in verschiedene Microsoft-Produkte integriert werden kann.\r\nEdge ist ein Web Browser von Microsoft.",
      "title" : "Produktbeschreibung"
    }, {
      "category" : "summary",
      "text" : "Ein Angreifer kann mehrere Schwachstellen in verschiedenen Microsoft Clouddiensten wie Azure HorizonDB, Exchange Online, 365 Copilot und dem Copilot Chat in Edge ausnutzen, um seine Privilegien zu erweitern, um beliebigen Code auszuführen und um Informationen offenzulegen.",
      "title" : "Angriff"
    }, {
      "category" : "general",
      "text" : "- Windows",
      "title" : "Betroffene Betriebssysteme"
    } ],
    "publisher" : {
      "category" : "other",
      "contact_details" : "csaf-provider@cert-bund.de",
      "name" : "Bundesamt für Sicherheit in der Informationstechnik",
      "namespace" : "https://www.bsi.bund.de"
    },
    "references" : [ {
      "category" : "self",
      "summary" : "WID-SEC-W-2026-1792 - CSAF Version",
      "url" : "https://wid.cert-bund.de/.well-known/csaf/white/2026/wid-sec-w-2026-1792.json"
    }, {
      "category" : "self",
      "summary" : "WID-SEC-2026-1792 - Portal Version",
      "url" : "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2026-1792"
    }, {
      "category" : "external",
      "summary" : "Microsoft Security Advisory CVE-2026-48579 vom 2026-06-04",
      "url" : "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-48579"
    }, {
      "category" : "external",
      "summary" : "Microsoft Security Advisory CVE-2026-48567 vom 2026-06-04",
      "url" : "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-48567"
    }, {
      "category" : "external",
      "summary" : "Microsoft Security Advisory CVE-2026-47655 vom 2026-06-04",
      "url" : "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-47655"
    }, {
      "category" : "external",
      "summary" : "Microsoft Security Advisory CVE-2026-42824 vom 2026-06-04",
      "url" : "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-42824"
    }, {
      "category" : "external",
      "summary" : "Microsoft Security Advisory CVE-2026-45497 vom 2026-06-04",
      "url" : "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-45497"
    }, {
      "category" : "external",
      "summary" : "Microsoft Security Advisory CVE-2026-47644 vom 2026-06-04",
      "url" : "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-47644"
    }, {
      "category" : "external",
      "summary" : "PoC Varonis CVE-2026-42824 vom 2026-06-15",
      "url" : "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-47644"
    } ],
    "source_lang" : "en-US",
    "title" : "Microsoft Clouddienste: Mehrere Schwachstellen ermöglichen Privilegieneskalation",
    "tracking" : {
      "current_release_date" : "2026-06-15T22:00:00.000+00:00",
      "generator" : {
        "date" : "2026-06-16T07:09:51.864+00:00",
        "engine" : {
          "name" : "BSI-WID",
          "version" : "1.6.0"
        }
      },
      "id" : "WID-SEC-W-2026-1792",
      "initial_release_date" : "2026-06-04T22:00:00.000+00:00",
      "revision_history" : [ {
        "date" : "2026-06-04T22:00:00.000+00:00",
        "number" : "1",
        "summary" : "Initiale Fassung"
      }, {
        "date" : "2026-06-15T22:00:00.000+00:00",
        "number" : "2",
        "summary" : "PoC aufgenommen CVE-2026-42824"
      } ],
      "status" : "final",
      "version" : "2"
    }
  },
  "product_tree" : {
    "branches" : [ {
      "branches" : [ {
        "category" : "product_name",
        "name" : "Microsoft 365 Copilot",
        "product" : {
          "name" : "Microsoft 365 Copilot",
          "product_id" : "T053296",
          "product_identification_helper" : {
            "cpe" : "cpe:/a:microsoft:365_copilot:-"
          }
        }
      }, {
        "branches" : [ {
          "category" : "product_version",
          "name" : "HorizonDB",
          "product" : {
            "name" : "Microsoft Azure HorizonDB",
            "product_id" : "T055006",
            "product_identification_helper" : {
              "cpe" : "cpe:/a:microsoft:azure:horizondb"
            }
          }
        } ],
        "category" : "product_name",
        "name" : "Azure"
      }, {
        "branches" : [ {
          "category" : "product_version",
          "name" : "Copilot Chat",
          "product" : {
            "name" : "Microsoft Edge Copilot Chat",
            "product_id" : "T053782",
            "product_identification_helper" : {
              "cpe" : "cpe:/a:microsoft:edge:copilot_chat"
            }
          }
        } ],
        "category" : "product_name",
        "name" : "Edge"
      }, {
        "branches" : [ {
          "category" : "product_version",
          "name" : "Online",
          "product" : {
            "name" : "Microsoft Exchange Online",
            "product_id" : "T055007",
            "product_identification_helper" : {
              "cpe" : "cpe:/a:microsoft:exchange:online"
            }
          }
        } ],
        "category" : "product_name",
        "name" : "Exchange"
      } ],
      "category" : "vendor",
      "name" : "Microsoft"
    } ]
  },
  "vulnerabilities" : [ {
    "cve" : "CVE-2026-42824",
    "product_status" : {
      "known_affected" : [ "T053782", "T053296", "T055007", "T055006" ]
    },
    "release_date" : "2026-06-04T22:00:00.000+00:00",
    "title" : "CVE-2026-42824"
  }, {
    "cve" : "CVE-2026-45497",
    "product_status" : {
      "known_affected" : [ "T053782", "T053296", "T055007", "T055006" ]
    },
    "release_date" : "2026-06-04T22:00:00.000+00:00",
    "title" : "CVE-2026-45497"
  }, {
    "cve" : "CVE-2026-47644",
    "product_status" : {
      "known_affected" : [ "T053782", "T053296", "T055007", "T055006" ]
    },
    "release_date" : "2026-06-04T22:00:00.000+00:00",
    "title" : "CVE-2026-47644"
  }, {
    "cve" : "CVE-2026-47655",
    "product_status" : {
      "known_affected" : [ "T053782", "T053296", "T055007", "T055006" ]
    },
    "release_date" : "2026-06-04T22:00:00.000+00:00",
    "title" : "CVE-2026-47655"
  }, {
    "cve" : "CVE-2026-48567",
    "product_status" : {
      "known_affected" : [ "T053782", "T053296", "T055007", "T055006" ]
    },
    "release_date" : "2026-06-04T22:00:00.000+00:00",
    "title" : "CVE-2026-48567"
  }, {
    "cve" : "CVE-2026-48579",
    "product_status" : {
      "known_affected" : [ "T053782", "T053296", "T055007", "T055006" ]
    },
    "release_date" : "2026-06-04T22:00:00.000+00:00",
    "title" : "CVE-2026-48579"
  } ]
}