XSS Vulnerabilities in Azure: Examining Unauthorized User Session Access
XSS Vulnerabilities in Azure Led to Unauthorized Access to User Sessions Overview Cloud security firm Orca has identified two cross-site scripting (XSS) vulnerabilities in Azure Bastion and Azure Container Registry (ACR) that could have resulted in unauthorized access to user sessions, data tampering, and service disruptions. These vulnerabilities were resolved by Microsoft in April and…