AWS fixes 1-click account takeover flaw exposing cloud services to XSS risk

21 March 2024

Amazon Web Services (AWS) Managed Workflows for Apache Airflow (MWAA), a popular service for running Apache Airflow workflows on the cloud, was found to contain a vulnerability that would have allowed for one-click account takeover via session fixation. The vulnerability, dubbed FlowFixation, was discovered by Tenable Research last year and has since been fixed by Amazon, according to a Tenable blog post published Thursday.

Source: SC Magazine

Date:

21 March 2024

Categorie(s):

NEWS

Tag(s):

Amazon, AWS, Cloud Computing, Cloud Provider, Frameworks

Multilogin Antidetect Browser Review 20244 May 2024
Navigating the API Security Landscape: A CEO’s Perspective on Embedding Zero Trust Principles4 May 2024
Lightsail VPN Review: Is Lightsail VPN Safe? [+Best Alternatives]4 May 2024
How Do I Know What New Casinos In New Zealand I Can Trust?4 May 2024
How To Secure Your Business In The Times Of All-pervasive Hackers4 May 2024