Microsoft OneFuzz is a cross-platform, free and open source fuzz testing framework from Microsoft Corporation (Microsoft).A security vulnerability exists in Microsoft OneFuzz versions 2.12.0 through 2.31.0, which stems from an incomplete authorization check in the affected product versions, which can be invoked by any authenticated user through the Authorization interface calls, read and write access to private data, and can tamper with existing data as well as in Azure computing resources, and an attacker can use the vulnerability to execute unauthorized code.