Miembros de
Boletines de Vulnerabilidades |
Reported AWS AppSync Issue |
|
Información sobre el sistema |
|
| Software afectado | AmazonWS |
Descripción |
|
|
Initial Publication Date: 2022/11/21 10:00AM EST A security researcher recently disclosed a case-sensitivity parsing issue within AWS AppSync, which could potentially be used to bypass the service’s cross-account role usage validations and take action as the service across customer accounts. No customers were affected by this issue, and no customer action is required. AWS moved immediately to correct this issue when it was reported. Analysis of logs going back to the launch of the More info: https://aws.amazon.com/security/security-bulletins/AWS-2022-009/ |
|
Identificadores estándar |
|
| Propiedad | Valor |
| CVE | |
Histórico de versiones |
||
| Versión | Comentario | Fecha |
| 1.0 | Advisory issued | 2022-11-27 |