Critical ‘nOAuth’ Flaw in Microsoft Azure AD Enabled Complete Account Takeover
,
A security shortcoming in Microsoft Azure Active Directory (AD) Open Authorization (OAuth) process could have been exploited to achieve full account takeover, researchers said.
California-based identity and access management service Descope, which discovered and reported the issue in April 2023, dubbed it nOAuth.
« nOAuth is an authentication implementation flaw that can affect Microsoft Azure AD
California-based identity and access management service Descope, which discovered and reported the issue in April 2023, dubbed it nOAuth.
« nOAuth is an authentication implementation flaw that can affect Microsoft Azure AD
,
A security shortcoming in Microsoft Azure Active Directory (AD) Open Authorization (OAuth) process could have been exploited to achieve full account takeover, researchers said.
California-based identity and access management service Descope, which discovered and reported the issue in April 2023, dubbed it nOAuth.
« nOAuth is an authentication implementation flaw that can affect Microsoft Azure AD
California-based identity and access management service Descope, which discovered and reported the issue in April 2023, dubbed it nOAuth.
« nOAuth is an authentication implementation flaw that can affect Microsoft Azure AD
, ,
https://thehackernews.com/2023/06/critical-noauth-flaw-in-microsoft-azure.html