Key Findings Silverfort researchers discovered a critical privilege escalation vulnerability in Microsoft Entra Agent ID that allowed tenant takeover through Service Principal hijacking The Agent ID Administrator role had overly broad permissions, enabling attackers to modify any Application Service Principal instead of just agent-related objects Attackers could inject credentials into high-privilege Service Principals and authenticate as them, gaining full tenant control Vul
