Jump to content

Guidance for Azure Active Directory (AD) keyCredential property Information Disclosure in Application and Service Principal APIs

Guest MSRC

By Guest MSRC
February 14, 2023 in Microsoft Products Support & Discussions

Share

https://extremetechsupport.com/topic/245935-guidance-for-azure-active-directory-ad-keycredential-property-information-disclosure-in-application-and-service-principal-apis/

Recommended Posts

Guest MSRC

Guest MSRC

Posted February 14, 2023

Posted February 14, 2023

Microsoft recently mitigated an information disclosure issue, CVE-2021-42306, to prevent private key data from being stored by some Azure services in the keyCredentialsproperty of an Azure Active Directory (Azure AD) Applicationand/or Service Principal, and prevent reading of private key data previously stored in the keyCredentials property. The keyCredentials property is used to configure an application’s authentication credentials.

Quote

Popular Days

Feb 13

1

Popular Days

Feb 13 2023

1 post

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest

Reply to this topic...

× Pasted as rich text. Paste as plain text instead

Only 75 emoji are allowed.

× Your link has been automatically embedded. Display as a link instead

× Your previous content has been restored. Clear editor

× You cannot paste images directly. Upload or insert images from URL.

×

Share

https://extremetechsupport.com/topic/245935-guidance-for-azure-active-directory-ad-keycredential-property-information-disclosure-in-application-and-service-principal-apis/

Go to topic listing

Similar Content
- Failed to remove Active Directory Domain Services. Error: 0x800f0831
  
  By Guest /u/bit_rain, October 27, 2024
  - 0 replies
  - 18 views
  - Guest
  - October 27, 2024
- Improved Guidance for Azure Network Service Tags
  
  By Guest MSRC, August 23, 2024
  - 0 replies
  - 15 views
  - Guest
  - August 23, 2024
- Active Directory custom application partition replication
  
  By Guest WojtekW_MCS, September 1, 2024
  - 0 replies
  - 15 views
  - Guest
  - September 1, 2024
- Active Directory Users & Computers, can't edit Domain Service even though I am the Admin. Access Right problem
  
  By Guest /u/pizzavegano, October 29, 2024
  - 0 replies
  - 23 views
  - Guest
  - October 29, 2024
- Integrate Azure Application proxy with remote desktop service and enable SSO
  
  By Guest Sabah Sawor, August 29, 2024
  - 0 replies
  - 12 views
  - Guest
  - August 29, 2024

×

Browse
- Back
- Forums
- Resources
- Downloads
- Link Directory
- Online Users
- Staff
- Blogs
- Events
- Videos
- Leaderboard
Activity
- Back
- All Activity
- Search
- Our Picks
Site Info
Support

×

Create New...