PT-2024-1882 · Microsoft · Azure Active Directory B2C
Published
2024-02-13
·
Updated
2024-05-29
·
CVE-2024-21381
CVSS v3.1
6.8
Medium
| Vector | AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:N |
Name of the Vulnerable Software and Affected Versions
Microsoft Azure Active Directory B2C (affected versions not specified)
Description
The issue is related to errors in the representation of information by the user interface in Microsoft Azure Active Directory B2C, which can lead to spoofing attacks. A remote attacker can exploit this issue to conduct spoofing attacks.
Recommendations
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
UI Misrepresentation of Critical Information
CSRF
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Azure Active Directory B2C