medium

Azure privilege escalation via Log Analytics role

Published Mon, Sep 13th, 2021
Platforms

Summary

Azure AD users could escalate their privileges using the Log Analytics Contributor role to reach the full Subscription Contributor role.

Affected Services

Log Analytics

Remediation

None required

Tracked CVEs

No tracked CVEs

References

Disclosure Date
Thu, Oct 15th, 2020
Exploitablity Period
-
Known ITW Exploitation
-
Detection Methods
-
Discovered by
Karl Fosaaen, NetSPI