![]() When an incorrect option is chosen in the backend to give users access to a particular location, anyone with an Azure account can gain access.įurther research by Wiz Research found that about 25 percent of apps to which multiple users have access contain misconfigurations and are open to any Azure user. More specifically, it involved a misconfiguration of Azure Active Directory. ![]() This misconfiguration allowed any Azure user, even public users, to access the specific application. The security specialists discovered the so-called BingBang vulnerability through a misconfigured application in Azure App Services and Azure Functions. This allowed them to manipulate search results and add malicious code. ![]() Researchers from security specialist Wiz Research penetrated the backend of Microsoft Bing through a misconfiguration in Azure App Services and Azure Functions.
0 Comments
Leave a Reply. |