Microsoft Rewards Tenable Bug Bounty for Azure Vulnerability, Deems Fix Unnecessary but Documentation Improvement Required.
A security flaw in Microsoft’s Azure cloud discovered by Tenable Vulnerability Assessment Team researchers allows bad actors to bypass firewall rules and access private web resources of other Azure customers. The issue stems from service tags in Azure that group IP addresses used by Azure services. Tenable warns that a rogue Azure customer could exploit … Read more