Microsoft Entra Design Lets Guest Users Gain Azure Control, Researchers Say

May 28, 2025 invoker category_news

Security Update News

Update Information

Title Microsoft Entra Design Lets Guest Users Gain Azure Control, Researchers Say
Update ID HACKREAD:BD0913950C4F0B0CE8436598BF32F638
Type hackread
Published 2025-05-28T20:27:55
Last Updated 2025-05-28T20:27:55

Security Impact

CVSS Score 0.0
Severity NONE
Attack Vector

Affected CVEs

Update Details

Researchers reveal how guest accounts with billing roles can create Azure subscriptions inside external tenants, gaining unexpected Owner access and opening hidden privilege risks.

View Advisory Details

💭 Join the Security Discussion

🔒 Your email address will not be published. Required fields are marked *

⚠️ Please be respectful and constructive in your comments. Security discussions should remain professional.