The Hacker News - Critical 'nOAuth' Flaw in Microsoft Azure AD Enabled Complete Account Takeover
A security shortcoming in Microsoft Azure Active Directory (AD) Open Authorization (OAuth) process could have been exploited to achieve full account takeover, researchers said. California-based identity and access management service Descope, which discovered and reported the issue in April 2023, dubbed it nOAuth. "nOAuth is an authentication implementation flaw that can affect Microsoft Azure AD
from The Hacker News https://thehackernews.com/2023/06/critical-noauth-flaw-in-microsoft-azure.html
from The Hacker News https://thehackernews.com/2023/06/critical-noauth-flaw-in-microsoft-azure.html
Comments
Post a Comment