A newly disclosed and patched flaw in Windows Admin Center’s Azure Active Directory Single Sign‑On integration undermined a fundamental trust boundary in cloud management: a local administrator on a single WAC‑managed VM could combine a stolen access token with a forged Proof‑of‑Possession (PoP)...
