#AzureHDInsight

Experts Detail New Flaws in Azure HDInsight Spark, Kafka, and Hadoop Services

February 6, 2024 by Xynik

February 6, 2024 at 10:10AM Three new security vulnerabilities have been identified in Azure HDInsight’s Apache Hadoop, Kafka, and Spark services, enabling privilege escalation and denial-of-service attacks. Specific flaws include XML External Entity Injection Elevation of Privilege and Java Database Connectivity Injection Elevation of Privilege. Microsoft has released fixes following responsible disclosure. Orca previously found … Read more

Microsoft Azure HDInsight Bugs Expose Big Data to Breaches

February 6, 2024 by Xynik

February 6, 2024 at 09:04AM Three high-risk vulnerabilities have been found in Microsoft Azure’s HDInsight, impacting data security. The bugs open the door to performance issues and unauthorized access, allowing attackers to manipulate data and system operations. Azure’s HDInsight, used by major corporations, houses valuable information, emphasizing the need for diligent patching to protect sensitive … Read more