Security · 1h ago
AWS Lambda SQLi Exploit Shows Path to Secrets Manager
A security researcher demonstrates a SQL injection in an AWS Lambda function that allows privilege escalation to access Secrets Manager. The attack chain involves assuming an IAM role, enumerating Lambda functions, and exploiting a vulnerable handler to attach a policy granting secret access. The lab highlights real-world risks of serverless misconfigurations.
Meridian48 take
While a lab scenario, the attack chain mirrors common cloud misconfigurations that real attackers exploit daily.
Read the full reporting
[LAB] Lambda SQLi PrivEsc to Access Secret (AWS Red Teaming) →
DEV Community
aws-securitylambda-exploitation