Privilege Escalation Vulnerability Disclosed in Google Cloud Functions
1. A flaw in Google Cloud Functions allows privilege escalation to the Cloud Build service account.
2. Attackers can access unauthorized services like Cloud Build, Storage, and Artifact Registry.
3. The issue is due to excessive permissions granted during Cloud Function setup.
4. Google updated defaults to use Compute Engine's service account for new instances, not affecting existing ones.
5. Users should manage Cloud Build service account permissions to mitigate risks.
#googlecloud #cloudsecurity #confusedfunction #privilegeescalation #cybersecurity #cloudfunctions #tenable #vulnerability #serverlesssecurity #cloudbuild #infosec #gcp #datasecurity #securityupdate #technews
1. A flaw in Google Cloud Functions allows privilege escalation to the Cloud Build service account.
2. Attackers can access unauthorized services like Cloud Build, Storage, and Artifact Registry.
3. The issue is due to excessive permissions granted during Cloud Function setup.
4. Google updated defaults to use Compute Engine's service account for new instances, not affecting existing ones.
5. Users should manage Cloud Build service account permissions to mitigate risks.
#googlecloud #cloudsecurity #confusedfunction #privilegeescalation #cybersecurity #cloudfunctions #tenable #vulnerability #serverlesssecurity #cloudbuild #infosec #gcp #datasecurity #securityupdate #technews