CVE-2020-16904

Name of the Vulnerable Software and Affected Versions: Azure Functions (affected versions not specified)

Description: The issue is related to an elevation of privilege vulnerability in the way Azure Functions validate access keys. An unauthenticated attacker who successfully exploited this vulnerability could invoke an HTTP Function without proper authorization. The vulnerability is associated with insecure privilege management.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.