azure ad remote write

The azure ad remote write tag covers discussions about the CVE-2026-42151 vulnerability, where Azure AD remote-write OAuth client secrets were exposed in plaintext through the Prometheus configuration API. This issue affects Prometheus versions before 3.5.3 and between 3.6.0 and 3.11.3. While not a classic Windows vulnerability, it is relevant to Windows administrators because modern Windows estates often integrate with Linux containers, Kubernetes, Azure identities, and open-source observability tools. A secret leak in this layer can quickly become a Microsoft Entra ID problem. The tag focuses on the security implications of Azure AD remote write configurations in hybrid or cloud-native environments.