Tag: privilege escalation flaw
1 article

Unit 42 Uncovers Privilege Escalation Flaw in Amazon Bedrock AgentCore
Imagine a service designed to help users having unrestricted access to sensitive data - that's what Unit 42 discovered in Amazon Bedrock's AgentCore, where a flaw allowed for privilege escalation and data exfiltration due to overly broad permissions. This "Agent God Mode" vulnerability highlights the risks of systemic misconfiguration.