IAM misconfigurationsAzure principal with privilege escalation permissions
Platform(s)
Compliance Frameworks
Brazilian General Data Protection (LGPD), CCM-CSA, CCPA, cis_8, CPRA, Data Security Posture Management (DSPM) Best Practices, essential_8_au, GDPR, HITRUST, iso_27001_2022, iso_27002_2022, Microsoft Cloud Security Benchmark, Mitre ATT&CK, New Zealand Information Security Manual, NIST 800-171, NIST 800-53, PDPA, pipeda, UK Cyber Essentials
Description
Principal has a role assignment that allows privilege escalation. If the principal will be compromised, the entire account can be compromised.
Personalized Demo
See Orca Security in Action
Gain visibility, achieve compliance, and prioritize risks with the Orca Cloud Security Platform.