all InfoSec news
Privilege escalation in GCP Cloud SQL
June 2, 2023, midnight |
The Open Cloud Vulnerability & Security Issue Database www.cloudvulndb.org
that allowed customer administrator accounts to create triggers
in the tempdb database and use those to gain sysadmin privileges in the instance.
The sysadmin privileges would give the attacker access to system databases
and partial access to the machine running that SQL Server instance.
access accounts attacker cloud cloud sql customer database databases escalation gcp instance machine partial privilege privilege escalation privileges running server sql sql server sysadmin system vulnerability
More from www.cloudvulndb.org / The Open Cloud Vulnerability & Security Issue Database
GraphNinja
6 days, 10 hours ago |
www.cloudvulndb.org
AWS Amplify IAM role publicly assumable exposure
2 weeks, 6 days ago |
www.cloudvulndb.org
AWS Glue database password leakage
3 weeks, 3 days ago |
www.cloudvulndb.org
Azure Site Recovery privilege escalation
2 months, 3 weeks ago |
www.cloudvulndb.org
Azure HDInsight privilege escalation and DoS vulnerabilities
2 months, 4 weeks ago |
www.cloudvulndb.org
Azure Pipelines Agent poisoned pipeline execution
4 months, 2 weeks ago |
www.cloudvulndb.org
Jobs in InfoSec / Cybersecurity
Sr Cyber Threat Hunt Researcher
@ Peraton | Beltsville, MD, United States
Lead Consultant, Hydrogeologist
@ WSP | Chattanooga, TN, United States
Senior Security Engineer - Netskope/Proofpoint
@ Sainsbury's | London, London, United Kingdom
Senior Technical Analyst-Network Security
@ Computacenter | Bengaluru Bengaluru (Bengaluru, IN, 560025
Senior DevSecOps Engineer - Clearance Required
@ Logistics Management Institute | Remote, United States
Software Test Automation Manager - Cloud Security
@ Tenable | Israel - Office - CS