Announcing BlueHat 2024: Call for Papers now open 

Congratulations to the MSRC 2024 Most Valuable Security Researchers! 

Microsoft Bounty Program Year in Review: $16.6M in Rewards 

Introducing the MSRC Researcher Resource Center

Congratulations to the Top MSRC 2024 Q2 Security Researchers!

On August 12, 2021, a security researcher reported a vulnerability in the Azure Cosmos DB Jupyter Notebook feature that could potentially allow a user to gain access to another customer’s resources by using the account’s primary read-write key. We mitigated the vulnerability immediately.
Our investigation indicates that no customer data was accessed because of this vulnerability by third parties or security researchers.

Headline

Update on the vulnerability in the Azure Cosmos DB Jupyter Notebook Feature

msrc-blog: Latest News