all InfoSec news
Researchers Detail AppSync Cross-Tenant Vulnerability in Amazon Web Services
Nov. 28, 2022, 11:56 a.m. | noreply@blogger.com (Ravie Lakshmanan)
The Hacker News thehackernews.com
The issue relates to a confused deputy problem, a type of privilege escalation where a program that doesn't have permission to perform an action can coerce a more-privileged entity to perform the action.
The shortcoming was reported
amazon amazon web services appsync aws researchers services vulnerability web web services
More from thehackernews.com / The Hacker News
Jobs in InfoSec / Cybersecurity
SOC 2 Manager, Audit and Certification
@ Deloitte | US and CA Multiple Locations
Cyber Security Cloud Solution Architect
@ Microsoft | London, London, United Kingdom
Compliance Program Analyst
@ SailPoint | United States
Software Engineer III, Infrastructure, Google Cloud Security and Privacy
@ Google | Sunnyvale, CA, USA
Cryptography Expert
@ Raiffeisen Bank Ukraine | Kyiv, Kyiv city, Ukraine
Senior Cyber Intelligence Planner (15.09)
@ OCT Consulting, LLC | Washington, District of Columbia, United States