Back to directory
WRITEUP #2919

AutoWarp: Critical Cross-Account Vulnerability in Microsoft Azure Automation Service

Auth BypassCross-tenant vulnerabilityAccount takeover
by@Yanir_(Yanir Tsarimi)
Bounty
40,000
Program
Microsoft
Published
Mar 7, 2022
Added to HackDex
Sep 15, 2022
Read Full Writeuphttps://orca.security/resources/blog/autowarp-microsoft-azure-automation-service-vulnerability/
RELATED WRITEUPS
Interesting Story of an Account Takeover Vulnerability
Auth BypassAccount takeover
Instagram and Meta 2FA Bypass by Unprotected Backup Code Retrieval in Accounts Center
Auth Bypass2FA / MFA bypass
Forced SSO Session Fixation
Auth BypassSSO
Account takeover on 8 years old public program
Auth BypassAccount takeover
$500 for Cracking Invitation Code For Unauthorized Access & Account Takeover
Auth BypassAccount takeover

Built with ❤️ by Shubham Rawat