A critical security vulnerability in Microsoft Azure’s API Connection architecture has been discovered that could allow attackers to completely compromise resources across different tenant environments, potentially exposing sensitive data stored in Key Vaults, Azure SQL databases, and third-party services like Jira and Salesforce. The vulnerability, which earned a security researcher a $40,000 bounty from Microsoft and a […]

The post Azure Default API Connection Flaw Enables Full Cross-Tenant Compromise appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Divya

Source: gbHackers
Source Link: https://gbhackers.com/azure-default-api-connection-flaw/