high

Amazon Cognito Rate Limit Bypass Vulnerability

Published Wed, Dec 27th, 2023

Platforms

Summary

A rate limit bypass vulnerability was discovered in Amazon Cognito, allowing attackers to potentially brute-force login credentials, password reset PINs, and MFA codes by sending requests in parallel. The vulnerability affected the main login flow, password reset function, and MFA process, potentially exposing user accounts to unauthorized access.

Affected Services

Amazon Cognito

Remediation

None required. Amazon has deployed a fix globally.

Tracked CVEs

No tracked CVEs

References

https://luemmelsec.github.io/Amazon-Cognito-Ratelimit-Bypass/

Contributed by https://github.com/korniko98

Entry Status

Stub (AI-Generated)

Disclosure Date

Wed, Sep 20th, 2023

Exploitablity Period

Until 2023/12/27

Known ITW Exploitation

Detection Methods

Monitor Cognito logs for unusual patterns of failed login attempts, password resets, or MFA verifications occurring in rapid succession from the same source.

Piercing Index Rating

Discovered by

Daniel Lümmel, LuemmelSec

More vulnerabilities...

high

Azure Pipelines Agent poisoned pipeline execution

Azure Pipelines and GitHub Actions allow deployment of runners and agents using VM images sourced from a GitHub-managed repository (github.com/actions/runner-images). This repo was misconfigured to...

Adnan Khan

Wed, Dec 20th, 2023

critical

Poisoning GitHub's Runner Images Supply Chain Attack

A critical vulnerability in GitHub's actions/runner-images repository allowed arbitrary code execution on self-hosted runners, potentially enabling modification of GitHub's runner base images. The ...

Adnan Khan

Wed, Dec 20th, 2023

high

Data Exfiltration Through CloudTrail

This scenario describes a potential data exfiltration technique using AWS CloudTrail. An attacker with access to CloudTrail logs could potentially extract sensitive information from logged events, ...

Wed, Dec 20th, 2023

View all