{"id":193575,"date":"2024-07-26T02:26:56","date_gmt":"2024-07-26T07:26:56","guid":{"rendered":"https:\/\/lifeboat.com\/blog\/2024\/07\/researchers-reveal-confusedfunction-vulnerability-in-google-cloud-platform"},"modified":"2024-07-26T02:26:56","modified_gmt":"2024-07-26T07:26:56","slug":"researchers-reveal-confusedfunction-vulnerability-in-google-cloud-platform","status":"publish","type":"post","link":"https:\/\/lifeboat.com\/blog\/2024\/07\/researchers-reveal-confusedfunction-vulnerability-in-google-cloud-platform","title":{"rendered":"Researchers Reveal ConfusedFunction Vulnerability in Google Cloud Platform"},"content":{"rendered":"<p><a class=\"aligncenter blog-photo\" href=\"https:\/\/lifeboat.com\/blog.images\/researchers-reveal-confusedfunction-vulnerability-in-google-cloud-platform.gif\"><\/a><\/p>\n<p>Cybersecurity researchers have disclosed a privilege escalation vulnerability impacting Google Cloud Platform\u2019s Cloud Functions service that an attacker could exploit to access other services and sensitive data in an unauthorized manner.<\/p>\n<p>Tenable has <a href=\"https:\/\/www.tenable.com\/blog\/confusedfunction-a-privilege-escalation-vulnerability-impacting-gcp-cloud-functions\" rel=\"noopener\" target=\"_blank\">given<\/a> the vulnerability the name ConfusedFunction.<\/p>\n<p>\u201cAn attacker could escalate their privileges to the Default Cloud Build Service Account and access numerous services such as Cloud Build, storage (including the source code of other functions), artifact registry and container registry,\u201d the exposure management company said in a statement.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Cybersecurity researchers have disclosed a privilege escalation vulnerability impacting Google Cloud Platform\u2019s Cloud Functions service that an attacker could exploit to access other services and sensitive data in an unauthorized manner. Tenable has given the vulnerability the name ConfusedFunction. \u201cAn attacker could escalate their privileges to the Default Cloud Build Service Account and access numerous [\u2026]<\/p>\n","protected":false},"author":427,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[34],"tags":[],"class_list":["post-193575","post","type-post","status-publish","format-standard","hentry","category-cybercrime-malcode"],"_links":{"self":[{"href":"https:\/\/lifeboat.com\/blog\/wp-json\/wp\/v2\/posts\/193575","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/lifeboat.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/lifeboat.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/lifeboat.com\/blog\/wp-json\/wp\/v2\/users\/427"}],"replies":[{"embeddable":true,"href":"https:\/\/lifeboat.com\/blog\/wp-json\/wp\/v2\/comments?post=193575"}],"version-history":[{"count":0,"href":"https:\/\/lifeboat.com\/blog\/wp-json\/wp\/v2\/posts\/193575\/revisions"}],"wp:attachment":[{"href":"https:\/\/lifeboat.com\/blog\/wp-json\/wp\/v2\/media?parent=193575"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/lifeboat.com\/blog\/wp-json\/wp\/v2\/categories?post=193575"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/lifeboat.com\/blog\/wp-json\/wp\/v2\/tags?post=193575"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}