Hacker News
- A cross-account database vulnerability in Azure PostgreSQL https://www.wiz.io/blog/wiz-research-discovers-extrareplica-cross-account-database-vulnerability-in-azure-postgresql/ 15 comments
- ExtraReplica: cross-account database vulnerability in Azure PostgreSQL https://www.wiz.io/blog/wiz-research-discovers-extrareplica-cross-account-database-vulnerability-in-azure-postgresql/ 3 comments netsec
Linking pages
- The cloud has an isolation problem: PostgreSQL vulnerabilities affect multiple cloud vendors | Wiz Blog https://www.wiz.io/blog/the-cloud-has-an-isolation-problem-postgresql-vulnerabilities 19 comments
- AttachMe: critical OCI vulnerability allows unauthorized access to customer cloud storage volumes | Wiz Blog https://www.wiz.io/blog/attachme-oracle-cloud-vulnerability-allows-unauthorized-cross-tenant-volume-access 9 comments
- #BrokenSesame: Accidental ‘write’ permissions to private registry allowed potential RCE to Alibaba Cloud Database Services | Wiz Blog https://www.wiz.io/blog/brokensesame-accidental-write-permissions-to-private-registry-allowed-potential-r 5 comments
- Hell’s Keychain: Supply-chain vulnerability in IBM Cloud Databases for PostgreSQL allows potential for unauthorized database access | Wiz Blog https://www.wiz.io/blog/hells-keychain-supply-chain-attack-in-ibm-cloud-databases-for-postgresql 3 comments
- GitHub - SummitRoute/csp_security_mistakes: This repo has been replaced by https://www.cloudvulndb.org https://github.com/SummitRoute/csp_security_mistakes 2 comments
- GitHub - hashishrajan/cloud-security-vulnerabilities: List of all the Publicly disclosed vulnerabilities of Public Cloud Provider like Amazon Web Services (AWS), Microsoft Azure, Google Cloud, Oracle Cloud, IBM Cloud etc https://github.com/hashishrajan/cloud-security-vulnerabilities 0 comments
- Designer Vulnerabilities https://shellsharks.com/designer-vulnerabilities 0 comments
Linked pages
- xkcd: Perl Problems http://xkcd.com/1171/ 56 comments
- Download Azure IP Ranges and Service Tags â Public Cloud from Official Microsoft Download Center https://www.microsoft.com/en-us/download/details.aspx?id=56519 17 comments
- Abusing SECURITY DEFINER functions - CYBERTEC https://www.cybertec-postgresql.com/en/abusing-security-definer-functions/ 4 comments
- GitHub - SummitRoute/csp_security_mistakes: This repo has been replaced by https://www.cloudvulndb.org https://github.com/SummitRoute/csp_security_mistakes 2 comments
- CVE-2020-25695 Privilege Escalation in Postgresql - Staaldraad https://staaldraad.github.io/post/2020-12-15-cve-2020-25695-postgresql-privesc/ 0 comments
- Certificate Transparency - Wikipedia https://en.wikipedia.org/wiki/Certificate_Transparency 0 comments
Related searches:
Search whole site: site:wiz.io
Search title: Wiz Research discovers "ExtraReplica"— a cross-account database vulnerability in Azure PostgreSQL | Wiz Blog
See how to search.