nOAuth Vulnerability Still Affects 9% of Microsoft Entra SaaS Apps Two Years After Discovery
Briefly

Recent research reveals that Microsoft's Entra ID is still at risk of a security flaw known as nOAuth, which could lead to account takeovers. An analysis by Semperis of 104 SaaS applications identified nine susceptible platforms where attackers may exploit cross-tenant access vulnerabilities. This flaw, linked to how OpenID Connect is implemented, permits impersonation and access through email attribute manipulation. This serious threat could allow malicious actors not only to compromise SaaS applications but also to infiltrate Microsoft 365 resources.
nOAuth abuse is a serious threat that many organizations may be exposed to. It's low effort, leaves almost no trace and bypasses end‑user protections.
An attacker that successfully abuses nOAuth would be able not only to gain access to the SaaS application data, but also potentially to pivot into Microsoft 365 resources.
Read at The Hacker News
[
|
]