Microsoft CopilotStudio Faces Server-Side Request Forgery Vulnerability

TapTechNews August 22nd news, the tech media darkreading published a blog post yesterday (August 21st), reporting that there is a server-side request forgery (SSRF) security vulnerability in Microsoft CopilotStudio, which will leak sensitive cloud data.

Introduction to Microsoft CopilotStudio

TapTechNews attaches the following official Microsoft introduction:

CopilotStudio is an end-to-end conversational AI platform that supports you to create and customize assistants using natural language or graphical interfaces.

With CopilotStudio, users can easily design, test and publish to meet the needs of internal or external scenarios.

Vulnerability

Researchers exploited a vulnerability in Microsoft CopilotStudio tools and were able to issue external HTTP requests, thereby accessing sensitive information about internal services in the cloud environment and potentially affecting multiple tenants.

Researchers from Tenable discovered a server-side request forgery (SSRF) vulnerability in the chatbot creation tool, and they used this vulnerability to access Microsoft's internal infrastructure, including the Instance Metadata Service (IMDS) and internal CosmosDB instances.

This vulnerability is tracked by Microsoft as CVE-2024-38206. According to the security bulletin associated with this vulnerability, a verified attacker can bypass the SSRF protection in MicrosoftCopilotStudio and leak cloud-based sensitive information through the network.