AWS - SNS Privesc
SNS
For more information check:
pageAWS - SNS Enumsns:Publish
sns:Publish
An attacker could send malicious or unwanted messages to the SNS topic, potentially causing data corruption, triggering unintended actions, or exhausting resources.
Potential Impact: Vulnerability exploitation, Data corruption, unintended actions, or resource exhaustion.
sns:Subscribe
sns:Subscribe
An attacker could subscribe or to an SNS topic, potentially gaining unauthorized access to messages or disrupting the normal functioning of applications relying on the topic.
Potential Impact: Unauthorized access to messages (sensitve info), service disruption for applications relying on the affected topic.
sns:AddPermission
sns:AddPermission
An attacker could grant unauthorized users or services access to an SNS topic, potentially getting further permissions.
Potential Impact: Unauthorized access to the topic, message exposure, or topic manipulation by unauthorized users or services, disruption of normal functioning for applications relying on the topic.
Last updated