services / Azure / Web App slot functions
Functions deployed to a Web App / Function App deployment slot; this action lists the function access keys that authorize invoking those functions.
Function keys are invocation credentials enabling code execution as the function app.
Microsoft.Web/Sites/slots/functions/listKeys/action
Returns function access keys (invocation credentials), enabling an attacker to call protected functions and run code as the app.
Risks
Scope: CRITICAL
This privilege may grant access to sensitive data from a significant fraction of organizational functions, allow interruption of critical organizational services, or its exploit could lead to significant privilege escalation.
Links
Contributed by P0 Security
© 2023–present P0 Security and contributors to the IAM Privilege Catalog