SQL Database

Abusable Azure SQL Database permissions that can lead to compromise or privilege escalation

General Info

Azure SQL Database

Microsoft.Sql/servers/read and Microsoft.Sql/servers/write

With access to these permissions, an attacker can configure the admin user's password for a SQL Database

az sql server update --name <sql-server-name> --resource-group <resource-group-name> --admin-password <new-password>

PreviousAzure Privilege Escalation NextAzure Services Info

Last updated 2 months ago