critical

AutoWarp

Published Mon, Mar 7th, 2022

Platforms

azure

Summary

An exposed endpoint in the Azure Automation Service allowed to steal Azure API credentials from other customers

Affected Services

Automation Service

Remediation

None required. As a general practice, use the least-privilege principle, including on managed identities assigned to automation accounts. While this would not have prevented the leakage of API credentials, it would have reduced the blast radius.

Tracked CVEs

No tracked CVEs

References

https://orca.security/resources/blog/autowarp-microsoft-azure-automation-service-vulnerability/

Contributed by https://github.com/christophetd

Entry Status

Finalized

Disclosure Date

Mon, Dec 6th, 2021

Exploitability Period

-

Known ITW Exploitation

-

Detection Methods

None

Piercing Index Rating

9.46

(PI:1.5/A1:20/A2:1.21/A7:1.1/A8:1.1)

Discovered by

Yanir Tsarimi, Orca Security

More vulnerabilities...

medium

Google Cloud Armor packet size bypass

gcp

Cloud Armor has a documented limitation of 8 KB as the maximum size of web request that it will inspect. The default behavior of Cloud Armor in this case can allow oversized malicious requests to b...

Karan Saini, Riyaz Walikar,...
low

Cognito User Group spoofing

aws

Opsmorph discovered an improper access control vulnerability in authorization logic common in applications built on AWS. The vulnerability means a user with permission to create a new Cognito User...

opsmorph
low

Oracle Apiary SSRF

oci

By misusing the Apiary web service and taking advantage of Apiary's use of IMDSv1, a remote attacker is able to retrieve sensitive information from various endpoints and use it to gain more access ...

Lidor Ben Shitrit, Orca Sec...
View all