WRITEUP #3406

Escalating Azure Privileges with the Log Analytics Contributor Role

Logic BugLogic flaw

by@kfosaaen(Karl Fosaaen)

Program

Microsoft

Published

Sep 13, 2021

Added to HackDex

Sep 15, 2022

Read Full Writeuphttps://www.netspi.com/blog/technical/cloud-penetration-testing/escalating-azure-privileges-with-the-log-analystics-contributor-role/

▸ RELATED WRITEUPS

Logic Flaw: I Can Block You from Accessing Your Own Account

Logic BugLogic flaw

“Like” Bypass on Customer Reviews — €500 bounty

Logic BugLogic flaw

Interesting Business Logic Error leads to Pre-Account Takeover via Verification bypass on GoogleVRP

Auth BypassAccount takeover

Built with ❤️ by Shubham Rawat