Microsoft on Tuesday said it addressed an authentication bypass vulnerability in Jupyter Notebooks for Azure Cosmos DB that enabled full read and write access.
The tech giant said the problem was introduced on August 12, 2022, and rectified worldwide on October 6, 2022, two days after responsible disclosure from Orca Security, which dubbed the flaw CosMiss.
“In short, if an attacker had

- November 1, 2022
- by
- Cyber News, Cyber Threat Trends
- Less than a minute
- 288 Views
Related Post
- by Francis Schmuff
- April 3, 2025
Microsoft Warns of Tax-Themed Email Attacks Using PDFs
Microsoft is warning of several phishing campaigns that are leveraging tax-related themes to deploy malware and steal credentials. “These campaigns
- by Francis Schmuff
- April 3, 2025
HellCat ransomware: what you need to know
What is HellCat? HellCat is the name of a relatively new ransomware-as-a-service (RaaS) group that first came to prominence in
- by Francis Schmuff
- April 4, 2025
CERT-UA Reports Cyberattacks Targeting Ukrainian State Systems with
The Computer Emergency Response Team of Ukraine (CERT-UA) has revealed that no less than three cyber attacks were recorded against
- by Francis Schmuff
- April 4, 2025
Critical Flaw in Apache Parquet Allows Remote Attackers
A maximum severity security vulnerability has been disclosed in Apache Parquet’s Java Library that, if successfully exploited, could allow a
- by Francis Schmuff
- April 3, 2025
Microsoft Warns of Tax-Themed Email Attacks Using PDFs
Microsoft is warning of several phishing campaigns that are leveraging tax-related themes to deploy malware and steal credentials. “These campaigns
- by Francis Schmuff
- April 3, 2025
HellCat ransomware: what you need to know
What is HellCat? HellCat is the name of a relatively new ransomware-as-a-service (RaaS) group that first came to prominence in
- by Francis Schmuff
- April 4, 2025
CERT-UA Reports Cyberattacks Targeting Ukrainian State Systems with
The Computer Emergency Response Team of Ukraine (CERT-UA) has revealed that no less than three cyber attacks were recorded against
- by Francis Schmuff
- April 4, 2025
Critical Flaw in Apache Parquet Allows Remote Attackers
A maximum severity security vulnerability has been disclosed in Apache Parquet’s Java Library that, if successfully exploited, could allow a