Neowin

Critical vulnerability in Microsoft Azure Health Bot Service exposed cross-tenant resources

Tenable discovered two security vulnerabilities in Microsoft's Azure Health Bot service. The first vulnerability, found in the "Data Connections" feature, allowed unauthorized access to resources.
Dark Reading

Microsoft Azure AI Health Bot Infected With Critical Vulnerabilities

Multiple privilege escalation issues in Microsoft Azure's cloud-based Health Bot service opened the platform to server-side request forgery (SSRF) and could have allowed access to cross-tenant ...
Infosecurity-magazine.com

Critical Vulnerability Found in Microsoft’s AI Healthcare Chatbot

Severe vulnerabilities have been discovered in Microsoft’s AI healthcare chatbot service, allowing access to user and customer information, according to Tenable researchers. The level of access ...