Back to directory

WRITEUP #2062

The Danger of Falling to System Role in AWS SDK Client

CloudPrivilege escalationSecurity misconfiguration

by@lacerenza_fra(Fracensco Lacerenza)

Program

-

Published

Oct 18, 2022

Added to HackDex

Oct 22, 2022

Read Full Writeuphttps://blog.doyensec.com/2022/10/18/cloudsectidbit-dataimport.html

▸ RELATED WRITEUPS

Addressed AWS defaults risks: OIDC, Terraform and Anonymous to AdministratorAccess

Double Agent: Exploiting Pass-through Authentication Credential Validation in Azure AD

CloudPrivilege escalation

UnOAuthorized: Privilege Elevation Through Microsoft Applications

CloudPrivilege escalation

Escalating Privileges in Google Cloud via Open Groups

CloudPrivilege escalation

ConfusedFunction: A Privilege Escalation Vulnerability Impacting GCP Cloud Functions

CloudPrivilege escalation

Built with ❤️ by Shubham Rawat