The vulnerabilities comprise url formatting bypasses and an unrestricted file upload functionality in the API Management developer portal, according to cybersecurity firm Ermetic.

Microsoft recently patched three vulnerabilities in its Azure API Management service, two of which enabled server-side request forgery (SSRF) attacks that could have allowed hackers to access ...

The file upload bug they discovered was an unrestricted file upload path traversal in the API Management developer portal, Ermetic said.

Recently, Microsoft announced the preview of Azure Private Link support for Azure API Management service, a fully-managed service that enables customers to publish, secure, transform, maintain ...

Microsoft has purchased Washington, D.C. startup Apiphany, a maker of an application-programming-interface management platform, which it plans to make available as part of Windows Azure.