Security News > 2019 > December > Microsoft OAuth Flaw Opens Azure Accounts to Takeover

Microsoft OAuth Flaw Opens Azure Accounts to Takeover

2019-12-02 21:00

The Microsoft applications are vulnerable to an OAuth authentication flaw that could enable Azure account takeover.

News URL

https://threatpost.com/microsoft-oauth-flaw-azure-takeover/150737/

#azure #microsoft #oauth #takeover

Related news

Microsoft Sues Hacking Group Exploiting Azure AI for Harmful Content Creation (source)
Azure, Microsoft 365 MFA outage locks out users across regions (source)
Microsoft Patches Critical Azure AI Face Service Vulnerability with CVSS 9.9 Score (source)

Related vendor

VENDOR	LAST 12M	#/PRODUCTS	LOW	MEDIUM	HIGH	CRITICAL	TOTAL VULNS
Microsoft		380	51	1407	2901	174	4533

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.