The Latest in IT Security

Oracle Cloud Infrastructure Vulnerability Exposed Sensitive Data

22
Sep
2022
Oracle Cloud Infrastructure Vulnerability Exposed Sensitive Data

image credit: adobe stock

Referred to as #AttachMe and mentioned in Oracle’s July 2022 Critical Patch Update, the vulnerability could have exposed sensitive data to attackers knowing the victim’s Oracle Cloud Identifier (OCID).

“OCI customers could have been targeted by an attacker with knowledge of #AttachMe. Any unattached storage volume, or attached storage volumes allowing multi-attachment, could have been read from or written to as long as an attacker had its Oracle Cloud Identifier (OCID),” Wiz security researcher Elad Gabay explains.

Related posts:
  1. Microsoft Teams Patch Bypass Allows RCE
  2. MFA Bypass Bugs Opened Microsoft 365 to Attack
  3. Study Finds 400,000 Vulnerabilities Across 2,200 Virtual Appliances
  4. Millions of Hotel Guests Worldwide Caught Up in Mass Data Leak
  5. Google Working on Patching GCP Vulnerability That Allows VM Takeover

Read More

Tags:  
Written by Securityweek
0 Comments
Comments are closed.

Categories

THURSDAY, APRIL 25, 2024
WHITE PAPERS

Mission-Critical Broadband – Why Governments Should Partner with Commercial Operators:
Many governments embrace mobile network operator (MNO) networks as ...

ARA at Scale: How to Choose a Solution That Grows With Your Needs:
Application release automation (ARA) tools enable best practices in...

The Multi-Model Database:
Part of the “new normal” where data and cloud applications are ...

Featured

Archives

Latest Comments