Tag: CVE-2025-55241

Microsoft narrowly avoided a vulnerability that could have led to the mass compromise of its cloud customers: Dutch researcher Dirk-jan Mollema uncovered two interrelated flaws in the Entra ID identity management service (formerly Azure Active Directory), which, when combined, allowed an attacker to gain global administrator privileges and effectively seize control of any Azure tenant.…