high

Amazon Cognito Rate Limit Bypass Vulnerability

Published Wed, Dec 27th, 2023

Platforms

aws

Summary

A rate limit bypass vulnerability was discovered in Amazon Cognito, allowing attackers to potentially brute-force login credentials, password reset PINs, and MFA codes by sending requests in parallel. The vulnerability affected the main login flow, password reset function, and MFA process, potentially exposing user accounts to unauthorized access.

Affected Services

Amazon Cognito

Remediation

None required. Amazon has deployed a fix globally.

Tracked CVEs

No tracked CVEs

References

https://luemmelsec.github.io/Amazon-Cognito-Ratelimit-Bypass/

Contributed by https://github.com/korniko98

Entry Status

Stub (AI-Generated)

Disclosure Date

Wed, Sep 20th, 2023

Exploitability Period

Until 2023/12/27

Known ITW Exploitation

-

Detection Methods

Monitor Cognito logs for unusual patterns of failed login attempts, password resets, or MFA verifications occurring in rapid succession from the same source.

Piercing Index Rating

-

Discovered by

Daniel Lümmel, LuemmelSec

More vulnerabilities...

high

Azure Pipelines Agent poisoned pipeline execution

azuregithub

Azure Pipelines and GitHub Actions allow deployment of runners and agents using VM images sourced from a GitHub-managed repository (github.com/actions/runner-images). This repo was misconfigured to...

Adnan Khan
critical

Poisoning GitHub's Runner Images Supply Chain Attack

github

A critical vulnerability in GitHub's actions/runner-images repository allowed arbitrary code execution on self-hosted runners, potentially enabling modification of GitHub's runner base images. The ...

Adnan Khan
high

Data Exfiltration Through CloudTrail

aws

This scenario describes a potential data exfiltration technique using AWS CloudTrail. An attacker with access to CloudTrail logs could potentially extract sensitive information from logged events, ...

View all