Research Pod Archives | Page 6 of 8

Elastic IP Transfer: Identifying and Mitigating Risks from a New Attack-Vector on AWS

Research

Elastic IP Transfer: Identifying and Mitigating Risks from a New Attack-Vector on AWS

Elastic IPs (EIPs) are public and static IPv4 addresses provided by AWS. EIPs can be viewed as a pool of...

Roi Nisimi

Jan 18, 2023

How Orca Found Server-Side Request Forgery (SSRF) Vulnerabilities in Four Different Azure Services

Discovered Vulnerabilities

How Orca Found Server-Side Request Forgery (SSRF) Vulnerabilities in Four Different Azure Services

As part of the Orca Research Pod efforts, we regularly research various cloud provider services and capabilities to help our...

Lidor Ben Shitrit

Jan 17, 2023

Unauthenticated SSRF Vulnerability on Azure Digital Twins Explorer

Discovered Vulnerabilities

Unauthenticated SSRF Vulnerability on Azure Digital Twins Explorer

In this blog we describe how we uncovered an SSRF Vulnerability in the Azure DigitalTwins Explorer service, allowing any unauthenticated...

Lidor Ben Shitrit

Jan 17, 2023

Unauthenticated SSRF Vulnerability on Azure Functions

Discovered Vulnerabilities

Unauthenticated SSRF Vulnerability on Azure Functions

In this blog we describe how we uncovered an SSRF Vulnerability in Azure Functions allowing any unauthenticated user to request...

Lidor Ben Shitrit

Jan 17, 2023

Authenticated SSRF Vulnerability on Azure API Management Service

Discovered Vulnerabilities

Authenticated SSRF Vulnerability on Azure API Management Service

In this blog we describe how we uncovered an important Server-Side Request Forgery (SSRF) Vulnerability on Azure API Management Service,...

Lidor Ben Shitrit

Jan 17, 2023

Authenticated SSRF Vulnerability on Azure Machine Learning Service

Discovered Vulnerabilities

Authenticated SSRF Vulnerability on Azure Machine Learning Service

In this blog we describe how we uncovered an SSRF Vulnerability in the Azure Machine Learning service, allowing any authenticated...

Lidor Ben Shitrit

Jan 17, 2023

The Top 5 Cloud Security Threats to Be Prepared For in 2023

‘Orca Watch’ Series

The Top 5 Cloud Security Threats to Be Prepared For in 2023

It’s been a busy year in cloud security. We’ve seen data breaches, tens of thousands of new vulnerabilities, and an...

Bar Kaduri

Dec 06, 2022

CosMiss: Azure Cosmos DB Notebook Remote Code Execution Vulnerability

Discovered Vulnerabilities

CosMiss: Azure Cosmos DB Notebook Remote Code Execution Vulnerability

The Orca Research Pod has discovered CosMiss, a vulnerability in Microsoft Azure Cosmos DB where authentication checks were missing from...

Roee Sagi Lidor Ben Shitrit

Nov 01, 2022

FabriXss (CVE-2022-35829): How We Managed to Abuse a Custom Role User Using CSTI and Stored XSS in Azure Fabric Explorer

Discovered Vulnerabilities

FabriXss (CVE-2022-35829): How We Managed to Abuse a Custom Role User Using CSTI and Stored XSS in Azure Fabric Explorer

The Orca Research Pod has discovered FabriXss, a vulnerability in Azure Service Fabric Explorer

Roee Sagi Lidor Ben Shitrit

Oct 19, 2022

Research Pod

Elastic IP Transfer: Identifying and Mitigating Risks from a New Attack-Vector on AWS

How Orca Found Server-Side Request Forgery (SSRF) Vulnerabilities in Four Different Azure Services

Unauthenticated SSRF Vulnerability on Azure Digital Twins Explorer

Unauthenticated SSRF Vulnerability on Azure Functions

Authenticated SSRF Vulnerability on Azure API Management Service

Authenticated SSRF Vulnerability on Azure Machine Learning Service

The Top 5 Cloud Security Threats to Be Prepared For in 2023

CosMiss: Azure Cosmos DB Notebook Remote Code Execution Vulnerability

FabriXss (CVE-2022-35829): How We Managed to Abuse a Custom Role User Using CSTI and Stored XSS in Azure Fabric Explorer

See Orca Security in Action

Cloud Security Platform

Technology Ecosystem

By Solution

By Industry

Comparisons