{"uuid": "6d709b18-1b99-41fc-b253-a635a3f61d97", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-41090", "type": "seen", "source": "https://bsky.app/profile/offseq.bsky.social/post/3mmimhgj3wo2p", "content": "Microsoft 365 Copilot for iOS hit by CRITICAL command injection (CVSS 9.3). Cloud service updated server-side \u2014 verify your instance is protected! Full details: https://radar.offseq.com/threat/cve-2026-41090-cwe-77-improper-neutralization-of-s-c8e983a4 #OffSeq #Microsoft #CVE202641090", "creation_timestamp": "2026-05-23T04:30:28.533764Z"}