CVE-2024-21401 - Microsoft Entra Jira Single-Sign-On Plugin Elevation of Privilege Vulnerability Explained
Date discovered: February 2024
Severity: Critical
Affected product: Microsoft Entra ID (Azure AD) Jira SSO Plugin
Attack type: Elevation of Privilege (EoP)
Introduction
In early
CVE-2024-21381 - Microsoft Azure Active Directory B2C Spoofing Vulnerability - Full Analysis and Exploit Details
Azure Active Directory (Azure AD) B2C is widely used for managing customer identities. But in early 2024, a major security issue—CVE-2024-21381—was discovered, allowing