medium

Azure Front Door client-side desync

Published Tue, Jun 27th, 2023

Platforms

Summary

A client-side desync vulnerability was discovered in Front Door, one of Azure's CDN solutions, caused by mishandling of the 'Content-Length' header in HTTP requests. Exploiting this vulnerability would most likely require user interaction through social engineering (such as clicking on a malicious link), but could allow an attacker to steal session cookies or forge responses to victim requests.

Affected Services

Azure Front Door

Remediation

null

Tracked CVEs

No tracked CVEs

References

https://blog.jeti.pw/posts/knocking-on-the-front-door/https://portswigger.net/research/browser-powered-desync-attacks

Contributed by https://github.com/mer-b

Disclosure Date

Mon, May 8th, 2023

Exploitablity Period

Known ITW Exploitation

Detection Methods

Piercing Index Rating

Discovered by

Jeti

More vulnerabilities...

medium

nOAuth

Descope identified a possible misconfiguration in Azure AD which could lead to misuse of the "Log in with Microsoft" authentication method on a web app. If an application relies on email attribute ...

Descope

Tue, Jun 20th, 2023

high

XSS in Azure Bastion and Container Registry

Orca discovered vulnerabilities in Azure Bastion and Azure Container Registry that could have enabled an attacker to achieve Cross-Site Scripting (XSS) by using iframe postMessages. The vulnerabili...

Lidor Ben Shitrit, Orca Sec...

Wed, Jun 14th, 2023

medium

Azure App Services takeover via legacy API

Binary Security found two vulnerabilities in the legacy Azure Resource Manager (ARM) REST API. The first vulnerability allowed an attacker with Reader access to an Azure Function, acting from a Win...

Haakon Holm Gulbrandsrud, C...

Mon, Jun 12th, 2023

View all