Vulnerabilities > Microsoft > Azure Active Site Recovery > High

DATE CVE VULNERABILITY TITLE RISK
2021-11-24 CVE-2021-42306 Insufficiently Protected Credentials vulnerability in Microsoft products
An information disclosure vulnerability manifests when a user or an application uploads unprotected private key data as part of an authentication certificate keyCredential? on an Azure AD Application or Service Principal (which is not recommended).
network
low complexity
microsoft CWE-522
8.1