Jump to content

Potential Risk of Privilege Escalation in Azure AD Applications

Windows Security

By Windows Security
June 20, 2023 in Security

Share

https://windowsbb.com/topic/548298-potential-risk-of-privilege-escalation-in-azure-ad-applications/

Reply to this topic

Recommended Posts

Windows Security

Newbie

Windows Security

Posted June 20, 2023

Posted June 20, 2023

Summary Microsoft has developed mitigations for an insecure anti-pattern used in Azure AD (AAD) applications highlighted by Descope, and reported to Microsoft, where use of the email claim from access tokens for authorization can lead to an escalation of privilege. An attacker can falsify the email claim in tokens issued to applications.

View the full article

Quote

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest

Reply to this topic...

× Pasted as rich text. Paste as plain text instead

Only 75 emoji are allowed.

× Your link has been automatically embedded. Display as a link instead

× Your previous content has been restored. Clear editor

× You cannot paste images directly. Upload or insert images from URL.

Insert image from URL

×

Share

https://windowsbb.com/topic/548298-potential-risk-of-privilege-escalation-in-azure-ad-applications/

Go to topic listing

×

Browse
- Back
- Forums
- Articles
- Guidelines
- Downloads
- Events
- Staff
- Online Users
- Leaderboard
Activity
- Back
- All Activity
- Search
Support

×

Create New...