You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Severity: HighDiscovered: 17 of December-2023, 09:32 PM UTC
CWE ID
CWE-284
CVSS
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N
Details
Target application contains a reference to an S3 bucket that no longer exists.
An attacker can register a new S3 bucket under the same original name.
The target application would use the new S3 bucket under the control of the attacker.
Attacker can populate the S3 bucket with malicious content or intercept legitimate traffic intended for the S3 bucket,
potentially leading to data theft or other malicious activities.
Possible exposure
Data breaches, Malware distribution, negatively impact reputation
Remediation suggestions
Remove unused S3 buckets reference URLs from code.
Request
GET http://brokencrystals.com/#faq-list-4 HTTP/1.1Referer: http://brokencrystals.com/accept-charset:accept: aaa Cookie: bc-calls-counter=1702840728532; connect.sid=z6-4hCQDphSNOL9X22qepI6EW4NhS5rp.BSX622Bk1Gi6eg2ig5Ogyo5lpUZGJOor9sLi8RLl7lsUser-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) HeadlessChrome/106.0.5249.119 Safari/537.36Accept-Encoding: identityContent-Length: 0
Amazon AWS S3 bucket takeover
Severity:
High
Discovered:17 of December-2023, 09:32 PM UTC
CWE ID
CWE-284
CVSS
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N
Details
Target application contains a reference to an S3 bucket that no longer exists.
An attacker can register a new S3 bucket under the same original name.
The target application would use the new S3 bucket under the control of the attacker.
Attacker can populate the S3 bucket with malicious content or intercept legitimate traffic intended for the S3 bucket,
potentially leading to data theft or other malicious activities.
Possible exposure
Data breaches, Malware distribution, negatively impact reputation
Remediation suggestions
Remove unused S3 buckets reference URLs from code.
Request
Response
External links
The text was updated successfully, but these errors were encountered: