SummaryOn April 18, 2025, Eye Security researchers identified a critical privilege escalation issue in Microsoft Copilot Enterprise’s live Python sandbox (Jupyter Notebook–based). A misconfigured entrypoint script (keepAliveJupyterSvc.sh) ran pgrep without using a full path. Because the $PATH Prioritized a writable directory (/app/miniconda/bin) over /usr/binAn attacker could upload a malicious pgrep script and gain root access inside the […]
The post Privileged Path Hijack: Eye Security Exposes Root-Level Vulnerability in Copilot Enterprise appeared first on SecPod Blog.