critical

Azurescape

Published Thu, Sep 9th, 2021
Platforms

Summary

Cross-account container escape

Affected Services

ACI

Remediation

Revoking any privileged credentials that were deployed to the platform before Aug. 31, 2021, and checking their access logs for irregularities.

Tracked CVEs

No tracked CVEs

References

Disclosure Date
Thu, Sep 9th, 2021
Exploitablity Period
-
Known ITW Exploitation
-
Detection Methods
-
Discovered by
Yuval Avrahami, Palo Alto