AI description
CVE-2025-32711 is a command injection vulnerability affecting Microsoft 365 Copilot. It allows an unauthorized attacker to disclose information over a network. The vulnerability, dubbed "EchoLeak," is a zero-click AI vulnerability, meaning it can be exploited without any user interaction. The attack involves embedding a malicious prompt payload within markdown-formatted content, such as an email. When the AI system's retrieval-augmented generation (RAG) engine parses this content, the payload silently triggers the LLM to extract and return private information from the user's current context. This could potentially expose sensitive data, including chat histories, OneDrive documents, SharePoint content, and Teams conversations. Microsoft has addressed this vulnerability.
- Description
- Ai command injection in M365 Copilot allows an unauthorized attacker to disclose information over a network.
- Source
- secure@microsoft.com
- NVD status
- Analyzed
- CNA Tags
- exclusively-hosted-service
- Products
- 365_copilot
CVSS 3.1
- Type
- Primary
- Base score
- 7.5
- Impact score
- 3.6
- Exploitability score
- 3.9
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
- Severity
- HIGH
- secure@microsoft.com
- CWE-77
- Hype score
- Not currently trending
The #EchoLeak vulnerability (CVE-2025-32711) exposes how AI CoPilots like #Microsoft365 can become silent conduits for data theft and hybrid warfare: @SoumyaAwasthi17 https://t.co/kaifoaXcE9
@orfgeotech
2 Dec 2025
34 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
"The #EchoLeak vulnerability (CVE-2025-32711) exposes how AI CoPilots like #Microsoft365 can become silent conduits for data theft and hybrid warfare: @SoumyaAwasthi17 https://t.co/naIEPV5aBD "
@raisinadialogue
30 Nov 2025
182 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
The #EchoLeak vulnerability (CVE-2025-32711) exposes how AI CoPilots like #Microsoft365 can become silent conduits for data theft and hybrid warfare: @SoumyaAwasthi17 https://t.co/kaifoaXKtH
@orfgeotech
29 Nov 2025
82 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
The #EchoLeak vulnerability (CVE-2025-32711) exposes how AI CoPilots like #Microsoft365 can become silent conduits for data theft and hybrid warfare: @SoumyaAwasthi17 https://t.co/kaifoaXKtH
@orfgeotech
24 Nov 2025
36 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
The #EchoLeak vulnerability (CVE-2025-32711) exposes how AI CoPilots like #Microsoft365 can become silent conduits for data theft and hybrid warfare: @SoumyaAwasthi17 https://t.co/kaifoaXcE9
@orfgeotech
20 Nov 2025
6 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
"The #EchoLeak vulnerability (CVE-2025-32711) exposes how AI CoPilots like #Microsoft365 can become silent conduits for data theft and hybrid warfare: @SoumyaAwasthi17 https://t.co/GIyPYy7mM7 "
@orfonline
20 Nov 2025
339 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
The #EchoLeak vulnerability (CVE-2025-32711) exposes how AI CoPilots like #Microsoft365 can become silent conduits for data theft and hybrid warfare: @SoumyaAwasthi17 https://t.co/kaifoaXKtH
@orfgeotech
19 Nov 2025
17 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
⚠️ Zero-click #LLM attacks are here. #EchoLeak (CVE-2025-32711) hijacked #Microsoft Copilot with no user action. Hidden prompts → scope violation → silent data exfiltration. Protect with: patching, strict filters, least-privilege, monitoring, red-team tests. #AIsecurity #
@consult_secnuo
18 Nov 2025
2 Impressions
0 Retweets
1 Like
0 Bookmarks
0 Replies
0 Quotes
EchoLeak (CVE-2025-32711) proves agentic #AI threats are no longer theoretical, says @radware's Pascal Geenens. Hidden prompt injections in routine tasks can exfiltrate enterprise data via Copilot or chat agents. #cybersecurity #infosec #ITsecurity https://t.co/kxpwhC6XUR
@SCMagazine
16 Nov 2025
678 Impressions
1 Retweet
3 Likes
0 Bookmarks
0 Replies
1 Quote
"The #EchoLeak vulnerability (CVE-2025-32711) exposes how AI CoPilots like #Microsoft365 can become silent conduits for data theft and hybrid warfare: @SoumyaAwasthi17 https://t.co/naIEPV5aBD "
@raisinadialogue
12 Nov 2025
168 Impressions
0 Retweets
1 Like
0 Bookmarks
0 Replies
0 Quotes
Top 5 Trending CVEs: 1 - CVE-2025-24200 2 - CVE-2025-32711 3 - CVE-2013-3219 4 - CVE-2021-4034 5 - CVE-2007-6249 #cve #cvetrends #cveshield #cybersecurity https://t.co/4Fua3CAN6W
@CVEShield
10 Nov 2025
9 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
The #EchoLeak vulnerability (CVE-2025-32711) exposes how AI CoPilots like #Microsoft365 can become silent conduits for data theft and hybrid warfare: @SoumyaAwasthi17 https://t.co/mGCZRawjgC
@ORFMumbai
10 Nov 2025
42 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
"The #EchoLeak vulnerability (CVE-2025-32711) exposes how AI CoPilots like #Microsoft365 can become silent conduits for data theft and hybrid warfare: @SoumyaAwasthi17 https://t.co/GIyPYy6OWz "
@orfonline
9 Nov 2025
396 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
The #EchoLeak vulnerability (CVE-2025-32711) exposes how AI CoPilots like #Microsoft365 can become silent conduits for data theft and hybrid warfare: @SoumyaAwasthi17 https://t.co/mGCZRavLr4
@ORFMumbai
4 Nov 2025
20 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
The #EchoLeak vulnerability (CVE-2025-32711) exposes how AI CoPilots like #Microsoft365 can become silent conduits for data theft and hybrid warfare: @SoumyaAwasthi17 https://t.co/mGCZRavLr4
@ORFMumbai
1 Nov 2025
40 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
The #EchoLeak vulnerability (CVE-2025-32711) exposes how AI CoPilots like #Microsoft365 can become silent conduits for data theft and hybrid warfare: @SoumyaAwasthi17 https://t.co/mGCZRawjgC
@ORFMumbai
24 Oct 2025
35 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
"The #EchoLeak vulnerability (CVE-2025-32711) exposes how AI CoPilots like #Microsoft365 can become silent conduits for data theft and hybrid warfare: @SoumyaAwasthi17 https://t.co/GIyPYy7mM7 "
@orfonline
22 Oct 2025
356 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
The #EchoLeak vulnerability (CVE-2025-32711) exposes how AI CoPilots like #Microsoft365 can become silent conduits for data theft and hybrid warfare: @SoumyaAwasthi17 https://t.co/mGCZRawjgC
@ORFMumbai
22 Oct 2025
41 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Microsoft 365 Copilot Flaw Explained: How 'EchoLeak' (CVE-2025-32711) Steals Your Data with a Single Email Read the full report on - https://t.co/K92u6IBvOC https://t.co/XK2RTFdqxl
@Iambivash007
21 Oct 2025
6 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
The #EchoLeak vulnerability (CVE-2025-32711) exposes how AI CoPilots like #Microsoft365 can become silent conduits for data theft and hybrid warfare: @SoumyaAwasthi17 https://t.co/mGCZRavLr4
@ORFMumbai
21 Oct 2025
18 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
The #EchoLeak vulnerability (CVE-2025-32711) exposes how AI CoPilots like #Microsoft365 can become silent conduits for data theft and hybrid warfare: @SoumyaAwasthi17 https://t.co/GIyPYy7mM7
@orfonline
19 Oct 2025
416 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
The #EchoLeak vulnerability (CVE-2025-32711) exposes how AI CoPilots like #Microsoft365 can become silent conduits for data theft and hybrid warfare: @SoumyaAwasthi17 https://t.co/GIyPYy6OWz
@orfonline
18 Oct 2025
518 Impressions
0 Retweets
1 Like
1 Bookmark
0 Replies
0 Quotes
The #EchoLeak vulnerability (CVE-2025-32711) exposes how AI CoPilots like #Microsoft365 can become silent conduits for data theft and hybrid warfare: @SoumyaAwasthi17 https://t.co/GIyPYy6OWz
@orfonline
17 Oct 2025
353 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
The #EchoLeak vulnerability (CVE-2025-32711) exposes how AI CoPilots like #Microsoft365 can become silent conduits for data theft and hybrid warfare: @SoumyaAwasthi17 https://t.co/GIyPYy6OWz
@orfonline
17 Oct 2025
394 Impressions
0 Retweets
1 Like
0 Bookmarks
0 Replies
0 Quotes
The #EchoLeak vulnerability (CVE-2025-32711) exposes how AI CoPilots like #Microsoft365 can become silent conduits for data theft and hybrid warfare: @SoumyaAwasthi17 https://t.co/GIyPYy6OWz
@orfonline
16 Oct 2025
318 Impressions
0 Retweets
1 Like
0 Bookmarks
0 Replies
0 Quotes
The #EchoLeak vulnerability (CVE-2025-32711) exposes how AI CoPilots like #Microsoft365 can become silent conduits for data theft and hybrid warfare: @SoumyaAwasthi17 https://t.co/GIyPYy7mM7
@orfonline
16 Oct 2025
357 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
The #EchoLeak vulnerability (CVE-2025-32711) exposes how AI CoPilots like #Microsoft365 can become silent conduits for data theft and hybrid warfare: @SoumyaAwasthi17 https://t.co/GIyPYy6OWz
@orfonline
16 Oct 2025
394 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
The #EchoLeak vulnerability (CVE-2025-32711) exposes how AI CoPilots like #Microsoft365 can become silent conduits for data theft and hybrid warfare: @SoumyaAwasthi17 https://t.co/GIyPYy7mM7
@orfonline
15 Oct 2025
372 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
The #EchoLeak vulnerability (CVE-2025-32711) exposes how AI CoPilots like #Microsoft365 can become silent conduits for data theft and hybrid warfare: @SoumyaAwasthi17 https://t.co/GIyPYy7mM7
@orfonline
14 Oct 2025
349 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
The #EchoLeak vulnerability (CVE-2025-32711) exposes how AI CoPilots like #Microsoft365 can become silent conduits for data theft and hybrid warfare: @SoumyaAwasthi17 https://t.co/GIyPYy6OWz
@orfonline
14 Oct 2025
177 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
#threatreport #LowCompleteness Echoleak- Send a prompt , extract secret from Copilot AI!( CVE-2025-32711) | 13-09-2025 Source: https://t.co/QAjYY35njC Key details below ↓ 💀Threats: Echoleak_vuln, 🎯Victims: Microsoft 365 copilot users 🔓CVEs: CVE-2025-32711 https://t.
@rst_cloud
14 Sept 2025
92 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Tähän on tultu: tietomurto ei edellytä edes klikkaamista "EchoLeak-nimellä tunnettu, Microsoft Copilotista löydetty haavoittuvuus (CVE-2025-32711) osoittaa, kuinka keinotekoinen äly voidaan manipuloida varastamaan tietoja täysin huomaamatta." https://t.co/WdWEm9NKmz
@ToniSiira
12 Sept 2025
53 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
🚨 EchoLeak (CVE-2025-32711): Zero-click AI attack on Microsoft 365 Copilot steals data via hidden email prompts. No user action needed. AI security just got real. https://t.co/TeibTzyFew #AISecuirty #Cybersecurity #AI #InfoSec https://t.co/F4nTWgZXDZ
@riviaio
29 Aug 2025
0 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
‘EchoLeak’ AI Attack Enabled Theft of Sensitive Data via Microsoft 365 Copilot Microsoft recently patched CVE-2025-32711, a vulnerability that could have been used for zero-click attacks to steal data from Copilot. The post ‘EchoLeak’ AI Attack Enabled Theft of Sensitive
@SecurityAid
6 Aug 2025
125 Impressions
1 Retweet
1 Like
0 Bookmarks
0 Replies
0 Quotes
🚨 CVE-2025-32711: M365 Copilot Vulnerability 🚨 AI command injection in Microsoft 365 Copilot allows unauthorized data disclosure over a network. CVSS 3.1: 9.3 (Critical). Avoid using the integration of Copilot and M365 for now. #AI #InfoSec #Cybersecurity #CVE #M365 ht
@Andrewkek77
5 Aug 2025
92 Impressions
1 Retweet
1 Like
0 Bookmarks
0 Replies
0 Quotes
🚨 CVE-2025-32711: M365 Copilot Vulnerability 🚨 AI command injection in Microsoft 365 Copilot allows unauthorized data disclosure over a network. CVSS 3.1: 9.3 (Critical). Avoid using the integration of Copilot and M365 for now. #AI #InfoSec #Cybersecurity #CVE #M365 ht
@Andrewkek77
5 Aug 2025
9 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
The AI Did Exactly What It Was Trained to Do, and Leaked Your Data. No clicks. No malware. No user mistakes. Watch this reel to understand CVE-2025-32711 & why the real threat might be your own AI tools. #BincomICT #MakeITWork #CVE202532711 #AIThreats #PromptInjection #Info
@bincomict
1 Aug 2025
40 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
EchoLeak: Der erste Zero-Click-Angriff auf Microsoft Copilot ist real (CVE-2025-32711). Kein Klick, kein Link – nur eine Mail im Posteingang. Copilot leakt interne Daten an Angreifer-URLs. AI macht nur ihren Job – aber im falschen System. Patch bereits ausgerollt. https://t.c
@NikoStapels
16 Jul 2025
22 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
هام للغاية .. ويرجى الإنتباه 😱 ثغرة CVE-2025-32711 اللي صارت الأسبوع الماضي ثغرة امنية حرجة في الذكاء الاصطناعي ،بصراحة شي يخوّف ويعتبر سابقة بتاريخ الهجمات ال
@JQCYBER
11 Jul 2025
378 Impressions
0 Retweets
1 Like
1 Bookmark
1 Reply
0 Quotes
🚨 #CVE-2025-32711 (EchoLeak): The Zero-Click #AI Prompt Injection Threat https://t.co/WzJIrm3kdd Educational Purposes!
@UndercodeUpdate
10 Jul 2025
3 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
🚨 #Echoleak (CVE-2025-32711) is more than a vulnerability—it’s a warning. Prompt-level security alone can’t stop indirect injections or protect sensitive data. You need layers: secure data early, control AI retrieval, and monitor all AI events. Read more: https://t.co/Yw
@SecuritiAI
2 Jul 2025
14 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE-2025-32711 - Microsoft - M365 Copilot Information Disclosure Vulnerability via Prompt Injection https://t.co/niqadQpzfz
@puneetx
2 Jul 2025
75 Impressions
1 Retweet
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Top 5 Trending CVEs: 1 - CVE-2025-32711 2 - CVE-2024-51978 3 - CVE-2025-6430 4 - CVE-2025-32433 5 - CVE-2020-9547 #cve #cvetrends #cveshield #cybersecurity https://t.co/4Fua3CAN6W
@CVEShield
29 Jun 2025
14 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
You’ve probably seen EchoLeak (CVE-2025-32711) making the rounds. But if you build or secure AI-powered features, don’t just scroll past it. This was a zero-click, full-chain exploit against Copilot — and a case study in why traditional AppSec isn’t enough for LLMs. Dive
@CheckmarxZero
26 Jun 2025
105 Impressions
0 Retweets
1 Like
0 Bookmarks
0 Replies
1 Quote
A critical zero-click flaw named EchoLeak (CVE-2025-32711, CVSS 9.3) in Microsoft 365 Copilot allowed attackers to silently steal sensitive data using malicious prompts hidden in emails or documents. No clicks needed—Copilot’s AI mixed the attacker’s input with internal dat
@smart_c_intel
20 Jun 2025
44 Impressions
0 Retweets
0 Likes
0 Bookmarks
1 Reply
0 Quotes
Zero-Click AI Vulnerability Exposes Microsoft 365 Copilot Data Without User Interaction EchoLeak (CVE-2025-32711) is a zero-click AI flaw in M365 Copilot that let attackers steal data without user action—now patched by Microsoft. #CyberSecurity Read More: https://t.co/DgPfCXH2
@pinakinit1
19 Jun 2025
26 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
🤯 A zero-click flaw 'EchoLeak' (CVE-2025-32711) found by Aim Security in MS 365 Copilot meant data theft with no user action! Microsoft patched it. Timely updates & strong security are vital. 🔐 #Cybersecurity https://t.co/iSLkzGU8EV
@dztaltraveller
18 Jun 2025
9 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
1 email, 0 clicks, infinite leaks Microsoft copilot got exploited with a prompt injection to exfiltrate sensitive data (CVE-2025-32711). - Attacker sends an email with malicious instructions - Copilot performs RAG on it - GG prompt instructions Sanitize your inputs!
@_colemurray
16 Jun 2025
902 Impressions
1 Retweet
12 Likes
1 Bookmark
1 Reply
0 Quotes
CVE-2025-32711 - Indirect Prompt Injection - Copilot AI Attack technique: Echoleak (echo - give bakc infos + leak) **zero-click**
@ghostbugste
16 Jun 2025
13 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
「メールを送るだけ」でAI悪用攻撃可なMicrosoft 365 Copilotの脆弱性。緊急で対策済み - PC Watch https://t.co/icxdcV7Q8E ・重大なゼロクリックAI脆弱性・EchoLeakを発見 ・CVE-2025-32711 ・Microsoft対策済み
@level01K
15 Jun 2025
45 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:microsoft:365_copilot:-:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "E4A390D9-7457-430A-82CC-A24DA275BF06"
}
],
"operator": "OR"
}
]
}
]