ioc[.]one - OSINT Cyber Threat Intelligence Database

Azure Redirect URI Takeover Vulnerability

Tags

cmtmf-attack-pattern:	Masquerading
maec-delivery-vectors:	Watering Hole
attack-pattern:	Credentials - T1589.001 Dns - T1071.004 Dns - T1590.002 Domains - T1583.001 Domains - T1584.001 Masquerading - T1655 Phishing - T1660 Phishing - T1566 Server - T1583.004 Server - T1584.004 Tool - T1588.002 Masquerading - T1036 Masquerading

Show in Graph

Common Information

Type	Value
UUID	89c9d339-d403-4021-ac4d-1170f295e244
Fingerprint	8c7a0f892b7165e5
Analysis status	DONE
Considered CTI value	0
Text language
Published	March 28, 2024, midnight
Added to db	Dec. 18, 2024, 8:57 p.m.
Last updated	Dec. 25, 2024, 11:25 a.m.
Headline	Azure Redirect URI Takeover Vulnerability
Title	Azure Redirect URI Takeover Vulnerability
Detected Hints/Tags/Attributes	30/3/2

Source URLs

	Redirection	Url
Details	Source	https://www.secureworks.com/research/azure-redirect-uri-takeover-vulnerability

URL Provider

Details	Provider	Source level domain
Details	secureworks.com	www.secureworks.com

Attributes

Details	Type	#Events	CTI	Value
Details	Domain	242		learn.microsoft.com
Details	Url	1		https://learn.microsoft.com/en-us/entra/identity-platform/v2-oauth2-auth-code-flow