Microsoft rejects critical Azure vulnerability report, no CVE issued
Source: Bleepingcomputer
Published:
<p>A security researcher claims Microsoft quietly fixed an Azure Backup for AKS vulnerability after rejecting his report, and blocking a CVE from being issued.</p> <p>The researcher's report describes a critical privilege escalation flaw that allowed cluster-admin access from the low-privileged "Bac