all InfoSec news
Hackers Abuse Azure AD Abandoned Reply URLs to Escalate Privilege
GBHackers On Security gbhackers.com
Recent reports indicate that there has been a privilege escalation vulnerability discovered, which arises due to abandoned Active Directory URLs. Threat actors can use this flaw to gain illegal authorization codes that can be used against Microsoft Power Platform API to gain access tokens and escalate their privileges. Microsoft has patched these vulnerabilities as soon […]
The post Hackers Abuse Azure AD Abandoned Reply URLs to Escalate Privilege appeared first on GBHackers - Latest Cyber Security News | Hacker News …
abuse access access tokens active directory api authorization azure azure ad cyber security directory escalation flaw hackers illegal microsoft microsoft power platform platform power power platform privilege privilege escalation privileges reports threat threat actors tokens urls vulnerability