You are using an out of date browser. It may not display this or other websites correctly. You should upgrade or use an alternative browser.
subscription transfer risk
About this tag
The subscription transfer risk tag covers discussions about security vulnerabilities in Microsoft Entra ID (formerly Azure Active Directory) that could allow unauthorized guest users to gain elevated privileges and potentially take control of Azure subscriptions. A key concern is the default billing permissions assigned to guest users, which may be exploited for privilege escalation. This tag is relevant for IT administrators and security professionals managing Azure environments who need to understand and mitigate risks related to subscription ownership changes and guest user access controls.
A recent analysis has uncovered a significant design flaw within Microsoft Entra ID, formerly known as Azure Active Directory, that could potentially allow unauthorized users to gain elevated privileges within an organization's Azure environment. This vulnerability centers around the default...