Zendesk recently learned of a vulnerability associated with Zendesk’s Microsoft sign-in feature that, if exploited, could potentially allow an attacker to sign in as a Zendesk agent. As a results Zendesk has developed a fix for this vulnerability which has been deployed on 18 May 2023 at 16:00 UTC. This fix will prevent end users from signing in with the Microsoft Sign-in option.