Security News > 2019 > December > Microsoft Patches Vulnerability Leading to Azure Account Takeover
2019-12-03 15:08
Microsoft recently addressed an OAuth 2.0 vulnerability that could allow an attacker to take over Azure accounts. The issue impacts specific Microsoft OAuth 2.0 applications and allows an attacker to create tokens with the victim’s permissions, CyberArk’s security researchers have discovered. read more
News URL
Related news
- Microsoft Patches Actively Exploited Power Pages Privilege Escalation Vulnerability (source)
- Siemens Teamcenter vulnerability could allow account takeover (CVE-2025-23363) (source)
- Microsoft names alleged credential-snatching 'Azure Abuse Enterprise' operators (source)
- Microsoft Exposes LLMjacking Cybercriminals Behind Azure AI Abuse Scheme (source)
- New Critical AMI BMC Vulnerability Enables Remote Server Takeover and Bricking (source)