writeups.xyz / MSRC – Joint security research write up – Azure AD Consent bypass disclosure with Kim Jamia – Q1/2022

Submitter : c2a

Date: 9 April 2022

Bounty : undisclosed

Vulnerabilities :

• Broken Authorization

Programs :

• Microsoft

Authors :

• Joosua Santasalo (@SantasaloJoosua)
• Kim Jämiä (@KimJamia)

Link :
https://securecloud.blog/2022/04/09/msrc-join-security-research-write-up-azure-ad-consent-bypass-disclosure-with-kim-jamia-q1-2022/