Vulnerabilities tagged "cloud"

The vulnerability here is in libterm.js as used by AWS CloudShell.When handing the escape to get the Termcap/Terminfo string (+q) it’ll reflect the parameter right back into the respond...

Very long post, covering an old issue (2013) tons of background about Java bytecode, App Engine and ASM (library).Some context for the issue is that App Engine would perform in-process sandboxing...

Race conditions on the web are one of my favorite vulnerability classes.Easy and often fairly impactful...

Two vulnerabilities.Firstly the `SCM_RUN_FROM_PACKAGE` environment var within the Azure Function container contained a “Shared Access Signature” (SAS) that was scoped for r/w...

**tl;dr** Uses a known docker breakout to escape into the wrapping VM, then by replacing a logfile with a symlink you could post to locations on the host machine.