all InfoSec news
API Management SSRF and path traversal vulnerabilities
May 4, 2023, midnight |
The Open Cloud Vulnerability & Security Issue Database www.cloudvulndb.org
and monitor APIs across all of their environments. Researchers found three high severity vulnerabilities
in the service, two of which are SSRF (Server Side Request Forgery) vulnerabilities, and the third is a
path traversal bug. The SSRF flaws affected the Azure API Management CORS proxy (which handles schema
retrieval) and hosting proxy (which routes API requests to the correct server). An attacker successful
in …
api api gateway api management apis azure bug environments forgery gateway high manage management monitor organizations path path traversal request researchers server server side service severity ssrf third vulnerabilities
More from www.cloudvulndb.org / The Open Cloud Vulnerability & Security Issue Database
GraphNinja
1 week, 2 days ago |
www.cloudvulndb.org
AWS Amplify IAM role publicly assumable exposure
3 weeks, 2 days ago |
www.cloudvulndb.org
AWS Glue database password leakage
3 weeks, 6 days ago |
www.cloudvulndb.org
Azure Site Recovery privilege escalation
2 months, 3 weeks ago |
www.cloudvulndb.org
Azure Pipelines Agent poisoned pipeline execution
4 months, 2 weeks ago |
www.cloudvulndb.org
Jobs in InfoSec / Cybersecurity
Principal Engineer - DLP Endpoint Security
@ Netskope | Bengaluru, Karnataka, India
Security Consultant (m/w/d)
@ Deutsche Telekom | Berlin, Deutschland
Security Engineer
@ IDEMIA | Haarlem, NL, 2031 CC
CyberSecurity Forensics and Incident Response Analyst
@ Bosch Group | Pittsburgh, PA, United States
Cyber MS MDR - Sr Associate
@ KPMG India | Bengaluru, Karnataka, India
Senior Lead Cybersecurity Architect-Threat modeling, Cryptography
@ JPMorgan Chase & Co. | India