• caglararli@hotmail.com
  • 05386281520

Researchers Detail AppSync Cross-Tenant Vulnerability in Amazon Web Services

Çağlar Arlı      -    19 Views

Researchers Detail AppSync Cross-Tenant Vulnerability in Amazon Web Services

Amazon Web Services (AWS) has resolved a cross-tenant vulnerability in its platform that could be weaponized by an attacker to gain unauthorized access to resources. The issue relates to a confused deputy problem, a type of privilege escalation where a program that doesn't have permission to perform an action can coerce a more-privileged entity to perform the action. The shortcoming was reported