{"id":146888,"date":"2022-09-23T19:23:28","date_gmt":"2022-09-24T00:23:28","guid":{"rendered":"https:\/\/lifeboat.com\/blog\/2022\/09\/researchers-disclose-critical-vulnerability-in-oracle-cloud-infrastructure"},"modified":"2022-09-23T19:23:28","modified_gmt":"2022-09-24T00:23:28","slug":"researchers-disclose-critical-vulnerability-in-oracle-cloud-infrastructure","status":"publish","type":"post","link":"https:\/\/lifeboat.com\/blog\/2022\/09\/researchers-disclose-critical-vulnerability-in-oracle-cloud-infrastructure","title":{"rendered":"Researchers Disclose Critical Vulnerability in Oracle Cloud Infrastructure"},"content":{"rendered":"<p><a class=\"aligncenter blog-photo\" href=\"https:\/\/lifeboat.com\/blog.images\/researchers-disclose-critical-vulnerability-in-oracle-cloud-infrastructure.gif\"><\/a><\/p>\n<p>Researchers have disclosed a new severe Oracle Cloud Infrastructure (OCI) vulnerability that could be exploited by users to access the virtual disks of other Oracle customers.<\/p>\n<p>\u201cEach virtual disk in Oracle\u2019s cloud has a unique identifier called OCID,\u201d Shir Tamari, head of research at Wiz, <a href=\"https:\/\/twitter.com\/shirtamari\/status\/1572223325719646211\" rel=\"noopener\" target=\"_blank\">said<\/a> in a series of tweets. \u201cThis identifier is not considered secret, and organizations do not treat it as such.\u201d<\/p>\n<p>\u201cGiven the OCID of a victim\u2019s disk that is not currently attached to an active server or configured as shareable, an attacker could \u2018attach\u2019 to it and obtain read\/write over it,\u201d Tamari added.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Researchers have disclosed a new severe Oracle Cloud Infrastructure (OCI) vulnerability that could be exploited by users to access the virtual disks of other Oracle customers. \u201cEach virtual disk in Oracle\u2019s cloud has a unique identifier called OCID,\u201d Shir Tamari, head of research at Wiz, said in a series of tweets. \u201cThis identifier is not [\u2026]<\/p>\n","protected":false},"author":427,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[20],"tags":[],"class_list":["post-146888","post","type-post","status-publish","format-standard","hentry","category-futurism"],"_links":{"self":[{"href":"https:\/\/lifeboat.com\/blog\/wp-json\/wp\/v2\/posts\/146888","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/lifeboat.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/lifeboat.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/lifeboat.com\/blog\/wp-json\/wp\/v2\/users\/427"}],"replies":[{"embeddable":true,"href":"https:\/\/lifeboat.com\/blog\/wp-json\/wp\/v2\/comments?post=146888"}],"version-history":[{"count":0,"href":"https:\/\/lifeboat.com\/blog\/wp-json\/wp\/v2\/posts\/146888\/revisions"}],"wp:attachment":[{"href":"https:\/\/lifeboat.com\/blog\/wp-json\/wp\/v2\/media?parent=146888"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/lifeboat.com\/blog\/wp-json\/wp\/v2\/categories?post=146888"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/lifeboat.com\/blog\/wp-json\/wp\/v2\/tags?post=146888"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}