Back to directory

WRITEUP #1811

AWS ECR Public Vulnerability

CloudPrivilege escalationBroken Access Control

by@gafnitav(Gafnit Amiga)

Program

AWS

Published

Dec 13, 2022

Added to HackDex

Dec 15, 2022

Read Full Writeuphttps://blog.lightspin.io/aws-ecr-public-vulnerability

▸ RELATED WRITEUPS

Addressed AWS defaults risks: OIDC, Terraform and Anonymous to AdministratorAccess

Double Agent: Exploiting Pass-through Authentication Credential Validation in Azure AD

CloudPrivilege escalation

UnOAuthorized: Privilege Elevation Through Microsoft Applications

CloudPrivilege escalation

Vestaboard: Exploring Broken Access Controls and Privilege Escalation

Privilege EscalationBroken Access Control

How I Earned $469 Bounty: Bypassing Plan Restriction

Privilege EscalationBroken Access Control

Built with ❤️ by Shubham Rawat