Disclosure of Vulnerability in Azure Automation Managed Identity Tokens

Microsoft Security Response Center

On December 10, 2021, Microsoft mitigated a vulnerability in the Azure Automation service. Azure Automation accounts that used Managed Identities tokens for authorization and an Azure Sandbox for job runtime and execution were exposed. Microsoft has not detected evidence of misuse of tokens. Microsoft has notified customers with affected Automation accounts. Microsoft recommends following the …

Disclosure of Vulnerability in Azure Automation Managed Identity Tokens Read More »