Microsoft Azure API Management Service Vulnerabilities Patched

May 4, 2023 at 01:19 PM

•

1 min read

Microsoft Azure API Management Service Vulnerabilities Patched — Photo: The Hacker News

TL;DR Summary

Three new security flaws have been discovered in Microsoft Azure API Management service, including two server-side request forgery (SSRF) flaws and one instance of unrestricted file upload functionality in the API Management developer portal. Exploitation of SSRF flaws can result in loss of confidentiality and integrity, permitting a threat actor to read internal Azure resources and execute unauthorized code. Following responsible disclosure, all the three flaws have been patched by Microsoft.

Topics:technology #api-management #api-management-vulnerability #microsoft-azure #path-traversal #security-flaws #ssrf

Share this article

Researchers Discover 3 Vulnerabilities in Microsoft Azure API Management Service The Hacker News
Microsoft Patches Serious Azure Cloud Security Flaws DARKReading
View Full Coverage on Google News

Reading Insights

Total Reads

Unique Readers

Time Saved

2 min

vs 2 min read

Condensed

82%

391 → 71 words

Want the full story? Read the original article

Read on The Hacker News

JavaScript Required

tl;dr daily news requires JavaScript to be enabled. Please enable JavaScript in your browser settings.

Related Sources

Reading Insights