Cloud infrastructure security company Wiz revealed details of a now-fixed Azure Cosmos database vulnerability. The vulnerability could have been potentially exploited to grant any Azure user full admin access to other customers’ database instances without authorization. Microsoft is urging its customers to regenerate their Cosmos DB Primary Keys to mitigate any risk arising from the flaw. Microsoft notified over 30% of Cosmos DB customers about the potential security breach, Wiz expects the actual number to be much higher, given that the vulnerability has been exploitable for months.”]
Source: https://thehackernews.com/2021/08/critical-cosmos-database-flaw-affected.html