Researchers Uncover ECScape Flaw in Amazon ECS Enabling Cross-Task Credential...

8.8 / 10

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Description

...

AI Analysis

A vulnerability in Amazon ECS allows a low-privileged container to escalate privileges by stealing credentials from higher-privileged tasks on the same EC2 instance. This can lead to lateral movement, data access, and environment control. The flaw exploits an undocumented ECS internal protocol, enabling credential theft and impersonation. Mitigations include using AWS Fargate and restricting metadata service access.

Visit Original Source

Basic Information

ID THN:DA3AF2B3E32753AE84E55948CC666705

Published Aug 6, 2025 at 20:30

AI Assessment

AI Severity High

Vendor Amazon

Product Amazon ECS

Version Unknown

{
    "lastseen": "2025-08-06T21:23:58",
    "description": "...",
    "published": "2025-08-06T20:30:00",
    "modified": "2025-08-06T20:30:00",
    "type": "thn",
    "title": "Researchers Uncover ECScape Flaw in Amazon ECS Enabling Cross-Task Credential Theft",
    "source": "",
    "references": "",
    "id": "THN:DA3AF2B3E32753AE84E55948CC666705",
    "bulletinFamily": "info",
    "cwe": null,
    "cvelist": [
        "CVE-2025-1568"
    ],
    "sourceData": "",
    "sourceHref": "",
    "cvss": {
        "score": 8.8,
        "severity": "HIGH",
        "vector": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "https://thehackernews.com/2025/08/researchers-uncover-ecscape-flaw-in.html",
    "category_name": "News",
    "post_link": "",
    "product": "",
    "version": "",
    "vendor": "",
    "ai_description": "A vulnerability in Amazon ECS allows a low-privileged container to escalate privileges by stealing credentials from higher-privileged tasks on the same EC2 instance. This can lead to lateral movement, data access, and environment control. The flaw exploits an undocumented ECS internal protocol, enabling credential theft and impersonation. Mitigations include using AWS Fargate and restricting metadata service access.",
    "ai_severity": "High",
    "ai_vendor": "Amazon",
    "ai_product": "Amazon ECS",
    "ai_version": "Unknown",
    "ai_score": 0
}

Description

AI Analysis

Basic Information

AI Assessment

💭 Join the Security Discussion ❌ Cancel Reply