medium

SSRF in Google Cloud Monitoring

Published Thu, Nov 12th, 2020
Platforms

Summary

An SSRF bug in Google Cloud Monitoring's uptime check feature could have been used to leak the authentication token of the service account used for these checks.

Affected Services

Google Cloud Monitoring

Remediation

None required

Tracked CVEs

No tracked CVEs

References

Disclosure Date
Mon, Jun 1st, 2020
Exploitablity Period
-
Known ITW Exploitation
-
Detection Methods
-
Discovered by
David Nechuta, null