Marius Sandbu

  • Home
  • About me
  • Books
  • Contact me

CVE-2021-42306 CredManifest

Uncategorized

Vulnerability CVE-2021-42306 CredManifest in Azure Automation and how to fix it

For customers that are using Azure Automation in many cases have been using it to build runbooks to automate against Azure environments (using a built-in AzureRunAsAccount) which is automatically created using the Azure Portal wizard. This creates a service principal in Azure Active Directory and gets by default contributor access Read more…

By Marius Sandbu, 6 months ago
ABOUT
ABOUT

My name is Marius Sandbu. I'm working as a Cloud Evangelist at Sopra Steria Blogging about topics within Cloud, End-user computing and other related topics.

Subscribe to msandbu.org

Enter your email address to subscribe

Join 549 other subscribers

Recent Posts
  • The curious case of Azure Managed Identity and a compromised virtual machine
  • Getting started with Azure Container Apps
  • Deployment of Kubernetes, Helm and YAML files using Terraform
  • Phishing attacks in Microsoft Teams and external federation
  • Securing Virtual Machine Infrastructure in Microsoft Azure
Marius Sandbu - [email protected] - 2020