critical

AutoWarp

Published Mon, Mar 7th, 2022

Platforms

Summary

An exposed endpoint in the Azure Automation Service allowed to steal Azure API credentials from other customers

Affected Services

Automation Service

Remediation

None required. As a general practice, use the least-privilege principle, including on managed identities assigned to automation accounts. While this would not have prevented the leakage of API credentials, it would have reduced the blast radius.

Tracked CVEs

No tracked CVEs

References

https://orca.security/resources/blog/autowarp-microsoft-azure-automation-service-vulnerability/

Contributed by https://github.com/christophetd

Entry Status

Finalized

Disclosure Date

Mon, Dec 6th, 2021

Exploitablity Period

Known ITW Exploitation

Detection Methods

Piercing Index Rating

9.46

(PI:1.5/A1:20/A2:1.21/A7:1.1/A8:1.1)

Discovered by

Yanir Tsarimi, Orca Security

More vulnerabilities...

medium

Google Cloud Armor packet size bypass

Cloud Armor has a documented limitation of 8 KB as the maximum size of web request that it will inspect. The default behavior of Cloud Armor in this case can allow oversized malicious requests to b...

Karan Saini, Riyaz Walikar,...

Thu, Feb 24th, 2022

low

Cognito User Group spoofing

Opsmorph discovered an improper access control vulnerability in authorization logic common in applications built on AWS. The vulnerability means a user with permission to create a new Cognito User...

opsmorph

Tue, Feb 15th, 2022

low

Oracle Apiary SSRF

By misusing the Apiary web service and taking advantage of Apiary's use of IMDSv1, a remote attacker is able to retrieve sensitive information from various endpoints and use it to gain more access ...

Lidor Ben Shitrit, Orca Sec...

Tue, Feb 8th, 2022

View all