Microsoft OneDrive Exposed to Critical Security Flaw: Excessive File Picker Permissions Risk Data Leaks - Cloud

7 x 24 Track global technological trends

Hot Topic

Day

News Topic

Microsoft OneDrive Exposed to Critical Security Flaw: Excessive File Picker Permissions Risk Data Leaks

4 day ago / Read about 0 minute

Author：小编

A critical security vulnerability has been discovered in Microsoft OneDrive's file picker, arising from excessively broad permission settings that lack the necessary granularity in OAuth permission controls. When users attempt to upload even a single file, the file picker demands read access to the entire cloud storage drive, accompanied by ambiguous authorization prompts, thereby elevating security risks. Furthermore, OAuth tokens are stored in plaintext within the browser, and certain authorization processes issue renewable refresh tokens, which could leave user data vulnerable for extended periods. Microsoft has acknowledged the existence of this vulnerability but has not yet deployed a solution to address it.

Previous page：Baidu Receives Patent for Innovative 'Garbage Clas...

Next page：Microsoft Teams Free Ushers in a New Era: Replacin...

Return to List

Hot Reading

1 day ago

Samsung could drop Google Gemini in favor of Perplexity for Galaxy S26

2 day ago

More affordable Strix Halo model emerges — Early Ryzen AI Max 385 Geekbench result reveals an eight-core option

17 hour ago

OpenAI Is Taking Over Your iPhones: ChatGPT to be the Next 'Super Assistant'—What Happens to Siri?

1 day ago

Apple's Next macOS Leaked: 'Tahoe' Is the New California-themed Name for the Operating System