Amazon Web Services (AWS) has resolved a cross-tenant vulnerability in its platform that could be weaponized by an attacker to gain unauthorized access to resources.
The issue relates to a confused deputy problem, a type of privilege escalation where a program that doesn't have permission to perform an action can coerce a more-privileged entity to perform the action.
The shortcoming was reported
Top News
-
Google Maps Timeline Data to be Stored Locally on Your Device for Privacy
Google has announced plans to store Maps Timeline data locally on users' devices instead of their Google account effective December 1, 2024. The...
-
FPT Telecom International cung cấp dịch bảo mật Palo Alto Networks
Tại sự kiện An ninh mạng vượt trội cho doanh nghiệp ngày 5/6, Palo Alto Networks đã trao chứng nhận Đối tác cung cấp dịch vụ bảo mật - Managed...
-
Apple Refused to Pay $1 Million Bounty to Kaspersky Lab for iOS Zero-days
Apple has refused to pay Kaspersky Lab a reward for discovering critical vulnerabilities in iOS that allowed attackers to install spyware on any...
-
Cảnh báo: Lỗ hổng Oracle WebLogic Server đang bị khai thác
Cơ quan An ninh mạng và Cơ sở hạ tầng Hoa Kỳ (CISA) đã cảnh báo lỗ hổng trong Oracle WebLogic Server có mã CVE-2017-3506 với điểm CVSS 7,4....