Researchers at Wiz have uncovered several critical vulnerabilities across various cloud platforms, highlighting some significant security risks:
ExtraReplica: This vulnerability in Azure PostgreSQL allowed cross-account database access. By exploiting a misconfigured regular expression in the database’s SSL certificate validation, attackers could forge certificates to impersonate replication users and gain unauthorized access to databases.
AttachMe: Found in Oracle Cloud Infrastructure, this vulnerability enabled unauthorized users to attach storage volumes to their instances, providing them with full read/write access. Attackers could exploit this by knowing the volume’s OCID and ensuring their instance was in the same availability domain as the target volume.
NotLegit: This issue in Azure App Service exposed hundreds of source code repositories due to a configuration flaw. The vulnerability allowed public access to applications’ .git directories, leading to potential leaks of sensitive information and intellectual property.
ChaosDB: A significant flaw in Azure Cosmos DB, where integration with Jupyter Notebooks inadvertently exposed database keys. This allowed potential attackers to take over entire databases remotely.
SAPwned: Multiple vulnerabilities in SAP AI Core services, such as unauthenticated access to Helm servers and AWS tokens exposed by Grafana Loki, allowed attackers to access and manipulate customer data, posing risks of data breaches and supply chain attacks.
By Skeeter Wesinger July 23, 2024