Microsoft (Azure) | writeups.xyz

Title	Vulnerabilities	Programs	Authors
Escalating From Reader To Contributor In Azure API Management	Privilege Escalation	Microsoft (Azure)	Christian Håland
GitHub Actions Exploitation: Repo Jacking And Environment Manipulation	Repojacking Supply Chain Attack	Microsoft (Azure) Swagger Google (Firebase) Alibaba	Hugo Vincent (@Hugow_vincent)
These Services Shall Not Pass: Abusing Service Tags to Bypass Azure Firewall Rules (Customer Action Required)	Cloud WAF Bypass SSRF	Microsoft (Azure)	Liv Matan (@TerminatorLM)
Arbitrary 1-click Azure tenant takeover via MS application	Cloud Privilege Escalation Cross-Tenant Vulnerability Phishing	Microsoft (Azure)	Arnau Ortega
So I Became A Node: Exploiting Bootstrap Tokens In Azure Kubernetes Service	Kubernetes Cloud Privilege Escalation	Microsoft (Azure)	Paul Barbé Kévin Schouteeten (@Scouty__)
FlowFixation: AWS Apache Airflow Service Takeover Vulnerability and Why Neglecting Guardrails Puts Major CSPs at Risk	Cloud Account Takeover RCE Cookie Tossing Session Fixation	AWS Microsoft (Azure) Google (GCP)	Liv Matan (@TerminatorLM)
All the Small Things: Azure CLI Leakage and Problematic Usage Patterns	CI/CD Information Disclosure	Microsoft (Azure)	Aviad Hahami (@_0xffd)
What the Function: Decrypting Azure Function App Keys	Cloud	Microsoft (Azure)	Thomas Elling
Knocking on the Front Door (client side desync attack on Azure CDN)	Client-Side Desync Attack	Microsoft (Azure)	Jeti (@0xJeti)
Hijacking Cloud CI/CD Systems for Fun and Profit	Cloud CI/CD Repojacking	Google (GCP) AWS Microsoft (Azure)	Divyanshu (@Gh0st_r1d3r_0x9)
Two XSS Vulnerabilities in Azure with Embedded postMessage IFrames	XSS PostMessage	Microsoft (Azure)	Lidor Ben Shitrit
Tampering with Conditional Access Policies Using Azure AD Graph API	Cloud Privilege Escalation	Microsoft (Azure)	Secureworks Counter Threat Unit (@Secureworks)
When Good APIs Go Bad: Uncovering 3 Azure API Management Vulnerabilities	SSRF Unrestricted File Upload Path Traversal Cloud	Microsoft (Azure)	Liv Matan (@TerminatorLM)
From listKeys to Glory: How We Achieved a Subscription Privilege Escalation and RCE by Abusing Azure Storage Account Keys	Cloud Privilege Escalation	Microsoft (Azure)	Roi Nisimi (@Roinisimi)
Riding the Azure Service Bus (Relay) into Power Platform	RCE Cross-Tenant Vulnerability Cloud Insecure Deserialization	Microsoft (Azure)	Nick Landers (@Monoxgas)
Super FabriXss: From XSS to an RCE in Azure Service Fabric Explorer by Abusing an Event Tab Cluster Toggle (CVE-2023-23383)	RCE XSS Cloud	Microsoft (Azure)	Lidor Ben Shitrit
Escalating Privileges with Azure Function Apps	Privilege Escalation Cloud Container Escape RCE	Microsoft (Azure)	Karl Fosaaen (@Kfosaaen)
Microsoft Azure Account Takeover via DOM-based XSS in Cosmos DB Explorer	Account Takeover DOM XSS	Microsoft (Azure)	Ngo Wei Lin (@Creastery)
Abusing Azure App Service Managed Identity Assignments	Cloud	Microsoft (Azure)	Andy Robbins (@_Wald0)
Technical Advisory – Azure B2C – Crypto Misuse and Account Compromise	Cryptographic Issues JWT Account Takeover Authentication Bypass	Microsoft (Azure)	John Novak
Azure security — Internal recon leveraging lack of access control	Azure AD Cloud Security Misconfiguration Privilege Escalation	Microsoft (Azure)	Molx32
EmojiDeploy: Smile! Your Azure web service just got RCE’d ._.	RCE Cloud CSRF CORS Misconfiguration	Microsoft (Azure)	Liv Matan (@TerminatorLM)
Azure Active Directory Flaw Allowed SAML Persistence	Azure AD SAML SSO	Microsoft (Azure)	Secureworks Counter Threat Unit (@Secureworks)
How Orca Found Server-Side Request Forgery (SSRF) Vulnerabilities in Four Different Azure Services	SSRF Cloud	Microsoft (Azure)	Lidor Ben Shitrit
ACSESSED: Cross-tenant network bypass in Azure Cognitive Search	Cloud Cross-Tenant Vulnerability Privilege Escalation	Microsoft (Azure)	Emilien Socchi (@Emiliensocchi)

Page 1 of 2