services / Azure / Application Insights Live Metrics token
An action that issues an authentication token granting access to the Application Insights Live Metrics real-time telemetry stream.
Live Metrics exposes near-real-time request, dependency, exception and performance telemetry that can contain sensitive operational and request data.
Microsoft.Insights/generateLiveToken/Read
Despite the /Read verb, this returns a usable Live Metrics auth token (credential material) whose effect is to grant the holder access to live application telemetry, so it both exports secret material and enables log/telemetry exfiltration.
Risks
Scope: MEDIUM
This privilege may grant access to confidential data, or its exploit can incur operational cost.
Links
Contributed by P0 Security
© 2023–present P0 Security and contributors to the IAM Privilege Catalog