A new vulnerability in Microsoft’s Entra ID (CVE-2025-55241) poses a significant risk of complete tenant takeovers by exploiting architectural gaps. Organizations should apply patches, audit legacy apps, and migrate to Microsoft Graph to mitigate these threats. #CVE-2025-55241 #EntraID #AzureAdGraphAPI
Keypoints
- A critical vulnerability in Microsoft Entra ID allows silent, full tenant compromise.
- The flaw involves undocumented Actor tokens and a validation gap in Azure AD Graph API.
- Attackers can impersonate any user, including global admins, without leaving traces.
- Microsoft has issued patches and recommends transitioning from Azure AD Graph API to Microsoft Graph.
- Legacy authentication mechanisms increase risks in cloud environments and require urgent mitigation.
Read More: https://www.esecurityplanet.com/news/entra-id-bug-microsoft-tenant/