VDB

GCVE-110-CLOUD-2022-0049

GCVE-110-CLOUD-2022-0049
Advisory Published
Vulnetix · Advisory published January 13, 2022
Read access of host of AWS internal Cloudformation service via XXE SSRF. The level of access with the compromised IAM role from there is unclear.

Affected Products

VendorProductVersionsPlatforms
AWSCloudFormation
AWSIAM

References

advisory
advisory
advisory

Browse GCVE Records

73,734 records in the GCVE database · Updated July 18, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›