Announcing BlueHat 2024: Call for Papers now open 

Congratulations to the MSRC 2024 Most Valuable Security Researchers! 

Microsoft Bounty Program Year in Review: $16.6M in Rewards 

Introducing the MSRC Researcher Resource Center

Congratulations to the Top MSRC 2024 Q2 Security Researchers!

Summary Summary Microsoft recently fixed an authentication bypass vulnerability in Jupyter Notebooks for Azure Cosmos DB (currently in preview) reported by Orca Security. Customers not using Jupyter Notebooks (99.8% of Azure Cosmos DB customers do NOT use Jupyter notebooks) were not susceptible to this vulnerability.
The bug was introduced on August 12th and fully patched worldwide on Oct 6th, two days after it was reported.

Headline

Microsoft Mitigates Vulnerability in Jupyter Notebooks for Azure Cosmos DB

msrc-blog: Latest News