Yuval Avrahami

Azurescape

Nir Ohfeld, Sagi Tzadik

Azure's Cosmos DB database service was vulnerable to remote account takeover.
Any Azure user could gain full admin access to other customers' Cosmos DB instances without authorization.
The vulnerability had a trivial exploit that doesn't require any previous access to the target environment.


ChaosDB

Scott Piper

Lightsail object storage allows the creation of access keys which were
logged to CloudTrail (both access key and secret key)


Lightsail object storage access keys logged

Kat Traxler

Allows an attacker with privileges in the account to share resources outside
of the account even when an org policy restricts this, thus enabling them to backdoor
their access.


Org policies bypass

Summary

Affected Services

Remediation

Tracked CVEs

References

More vulnerabilities...

Azurescape

Yuval Avrahami, Palo Alto

ChaosDB

Nir Ohfeld, Sagi Tzadik, Wiz

Lightsail object storage access keys logged

Scott Piper, Summit Route