SecurityWeek
10 months agoDevOps
Microsoft Patches Sensitive Information Disclosure Vulnerability in Azure CLI
Microsoft has released patches and guidance to address a high-severity vulnerability in Azure Command-Line Interface (CLI).
The vulnerability could expose sensitive information, such as credentials, through GitHub Actions logs.
The bug existed because certain Azure CLI functions inadvertently exposed secrets through CI/CD logs. [ more ]