Azure OpenAI 漏洞列表
共找到 4 个与 Azure OpenAI 相关的漏洞
📅 加载漏洞趋势中...
-
azure-openai-cmk-not-enabled: Azure OpenAI Encryption using Customer-Managed Keys Not Enabled POC
Ensure that your Microsoft Azure OpenAI service instances are using Customer-Managed Keys (CMKs) instead of Microsoft-managed encryption keys (i.e., default keys used by Microsoft Azure for encryption at rest) in order to have a more granular control over your Azure OpenAI data encryption and decryption process. -
azure-openai-managed-identity-not-used: Azure OpenAI Service Instance Managed Identity Not Used POC
Ensure that your Azure OpenAI service instances are using system-assigned and/or user-assigned managed identities to allow secure access to other cloud protected resources such as Azure key vaults. Managed identities minimizes risks, simplifies management, and maintains compliance with evolving cloud services. -
azure-openai-private-endpoints-unconfigured: Azure OpenAI Service Instances Not Using Private Endpoints POC
To reduce the risk of exposure to external threats and strengthens overall security for your Azure OpenAI interactions, ensure that your Azure OpenAI service instances are accessed exclusively through private endpoint connections. -
azure-openai-public-access-disabled: Azure OpenAI Public Network Access Not Disabled POC
Ensure that public network access (i.e. all network access) to Microsoft Azure OpenAI service instances is disabled in order to enhance security by preventing unauthorized access.