VDB

GCVE-110-CLOUD-2024-0008

GCVE-110-CLOUD-2024-0008
Advisory Published
Vulnetix · Advisory published November 1, 2024
A vulnerability in Amazon DataZone allowed potential attackers to assume roles in AWS accounts by exploiting a confused deputy problem. This could have granted unauthorized access to sensitive data managed by DataZone or other AWS services accessible by the IAM role trusting DataZone. The issue has been resolved, with no customers reportedly impacted.

Affected Products

VendorProductVersionsPlatforms
AWSIAM
AWSAmazon DataZone

Browse GCVE Records

73,044 records in the GCVE database · Updated July 16, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›