VDB

GCVE-110-CLOUD-2023-0021

GCVE-110-CLOUD-2023-0021
Advisory Published
Vulnetix · Advisory published September 19, 2023
Customers can configure Chronicle to ingest data from customer-owned Cloud Storage buckets using an ingestion feed. Chronicle previously used a shared service account for all customers for granting permission to the bucket. Therefore, one customer's Chronicle instance could be configured to ingest data from another customer's Cloud Storage bucket. However, this required knowledge of the bucket URI.

Affected Products

VendorProductVersionsPlatforms
AWSConfig
GCPChronicle

References

advisory
advisory

Browse GCVE Records

73,738 records in the GCVE database · Updated July 19, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›