Summary
Lack of the privilege s3:PutBucketTagging did not restrict the ability
to tag S3 buckets.
Affected Services
S3
Remediation
None required
Tracked CVEs
No tracked CVEs
References
Contributed by https://github.com/0xdabbad00
Entry Status
Finalized
Disclosure Date
Mon, Sep 28th, 2020
Exploitablity Period
-
Known ITW Exploitation
-
Detection Methods
-
Piercing Index Rating
-
Discovered by
Ian Mckay
