all InfoSec news
Azure Function Apps privilege escalation
March 23, 2023, midnight |
The Open Cloud Vulnerability & Security Issue Database www.cloudvulndb.org
access to a Reader role on a Function App to escalate their privileges and gain write permissions
through arbitrary file reads on Function App containers. For Windows containers, this would only
grant an attacker the ability to extract ASP.NET encryption keys (the impact of which remains unclear),
but for Linux containers it would have allowed an attacker to read environmental variables containing
information that …
access apis app app containers apps asp azure containers escalation extract file function grant .net permissions portal privilege privilege escalation privileges reader role windows
More from www.cloudvulndb.org / The Open Cloud Vulnerability & Security Issue Database
GraphNinja
1 week, 6 days ago |
www.cloudvulndb.org
AWS Amplify IAM role publicly assumable exposure
3 weeks, 6 days ago |
www.cloudvulndb.org
Azure Site Recovery privilege escalation
2 months, 4 weeks ago |
www.cloudvulndb.org
Azure Pipelines Agent poisoned pipeline execution
4 months, 3 weeks ago |
www.cloudvulndb.org
Jobs in InfoSec / Cybersecurity
Cyber Software Engineering, Senior Advisor
@ Peraton | Annapolis Junction, MD, United States
Cybersecurity Architect, Lead (NJUS)
@ NetJets | Columbus, OH, US, 43219
Security Operations Analyst
@ Commonwealth Financial Network | Waltham, MA, United States
Penetration Tester – Senior Associate - Cybersecurity
@ JPMorgan Chase & Co. | Buenos Aires, Argentina
Manager - Endpoint Security
@ Novo Nordisk | Bengaluru, Karnataka, IN
Senior Officer, Identity Access Management Administrator, Group Information Security (Contract)
@ UOB | Singapore (City Area), SG, 048624