issues
search
wiz-sec
/
open-cvdb
An open project to list all publicly known cloud vulnerabilities and CSP security issues
https://cloudvulndb.org
Creative Commons Attribution 4.0 International
297
stars
59
forks
source link
issues
Newest
Newest
Most commented
Recently updated
Oldest
Least commented
Least recently updated
[Contribution] Azure OpenAI Control Plane Bypass for Deployment resource
#281
tyson-trust
opened
4 months ago
2
Create azure-hdinsight-dos.yaml
#280
mer-b
closed
5 months ago
0
[Contribution] Sys:All
#279
korniko98
opened
5 months ago
0
Create cve-2022-39327.yaml
#278
korniko98
closed
5 months ago
0
Update s3-replicator-cloudtrail.yaml
#277
korniko98
closed
5 months ago
0
[Contribution] Azure HDInsight Privilege Escalations and Denial of Service Vulnerabilities
#276
korniko98
closed
5 months ago
0
[Contribution] Add Bazel supply chain issue
#275
korniko98
opened
5 months ago
0
[Contribution] Add security issue or vulnerability
#274
julienr78
closed
2 months ago
1
[Contribution] Azure Devops Zero-Click CI/CD Vulnerability
#273
korniko98
closed
1 month ago
0
[Contribution] Amazon Q data exfiltration vulnerability
#272
korniko98
closed
1 month ago
0
[Contribution] Three Privilege Escalation Bugs in Google Cloud Platform’s OS Login
#271
korniko98
closed
2 months ago
0
[Contribution] Critical Authentication Bypass Vulnerability in Google Cloud API Gateway
#270
korniko98
opened
6 months ago
0
[Contribution] GCP Identity-Aware Proxy Misconfiguration
#269
korniko98
opened
6 months ago
0
Update gcp-cloudshell-open-in-command-injection.yaml
#268
slagathorr
closed
6 months ago
1
[Contribution] Google OAuth vulnerability that allows employees to retain indefinite access to applications
#267
yawn
opened
6 months ago
0
add gcp info leak
#266
mer-b
closed
5 months ago
0
add istio rce vulnerability
#265
mer-b
closed
5 months ago
1
Create runner-supply-chain.yaml
#264
korniko98
closed
6 months ago
0
[Contribution] Azure Pipelines runner images supply chain vector
#263
korniko98
opened
6 months ago
0
[Contribution] GKE unauthorized access bugs
#262
korniko98
opened
7 months ago
0
Delete WAF bypass vulnerabilities (out of scope)
#261
korniko98
closed
7 months ago
3
[Contribution] Indirect data leakage through Cloudtrail logs on AWS
#260
jfbette
opened
7 months ago
0
[Contribution] Add security issue or vulnerability
#259
Frichetten
closed
1 month ago
0
[Contribution] Add Azure HDInsight DoS and privesc
#258
0xdabbad00
opened
7 months ago
0
[Contribution] Delefriend
#257
korniko98
opened
8 months ago
0
[Contribution] Extracting Managed Identity Credentials from Azure Function Apps
#256
korniko98
opened
8 months ago
0
[Contribution] AKS privilege elevation (or possibly RCE)
#255
korniko98
opened
8 months ago
0
[Contribution] Azure CLI credential leakage
#254
korniko98
opened
8 months ago
0
[Contribution] Azure Automation hidden jobs
#253
korniko98
opened
8 months ago
0
[Contribution] ApatchMe
#252
ramimac
closed
2 months ago
0
[Contribution] Add GCP vulnerabilities discovered by Anthony Weems
#251
korniko98
opened
8 months ago
0
[Contribution] Data Exfiltration Vulnerability in Google Cloud Vertex AI
#250
ramimac
closed
2 months ago
0
[Contribution] Data Exfiltration Vulnerability in Azure AI Playground
#249
ramimac
closed
2 months ago
0
Minor correction: Modify affectedPlatforms
#248
researchgecko
closed
9 months ago
1
Create aws-2023-010.yaml
#247
korniko98
closed
9 months ago
2
Closes #245: Add GCP Bulletins
#246
ramimac
closed
8 months ago
6
[Contribution] Add remaining GCP Bulletins
#245
ramimac
closed
8 months ago
2
[Contribution] Google Cloud Chronicle shared service account allowed cross-customer bucket access
#244
jacks-reid
closed
2 months ago
0
Closes #232: GCP Stackdriver Debug SSRF
#243
ramimac
closed
7 months ago
1
Closes #233: GCP Speech-to-Text disclosure
#242
ramimac
closed
9 months ago
0
Closes #235: Cloudshell CSWSH
#241
ramimac
closed
9 months ago
1
Closes #236: Open in Cloud Shell injection
#240
ramimac
closed
7 months ago
1
Closes #158: add sns sdk signing validation issue
#239
ramimac
closed
9 months ago
1
[Contribution] XSS to Cloud Shell instance takeover (RCE as root)
#238
korniko98
opened
10 months ago
0
[Contribution] RCE on Apigee API proxies
#237
korniko98
closed
10 months ago
0
[Contribution] Command Injection in Google Cloud Shell
#236
korniko98
closed
7 months ago
0
[Contribution] CSWSH vulnerability in Google Cloud Shell’s code editor
#235
korniko98
closed
9 months ago
0
[Contribution] Cloud Shell IDE issues
#234
korniko98
opened
10 months ago
0
[Contribution] Information Disclosure Vulnerability in the Google Cloud Speech-to-Text API
#233
korniko98
closed
9 months ago
0
[Contribution] SSRF in Google Cloud Platform StackDriver
#232
korniko98
closed
7 months ago
0
Previous
Next