AWS patches vulnerability that could have been used to hijack Managed Workflows Apache Airflow (MWAA) sessions via FlowFixation attack. 

The post Vulnerability Allowed One-Click Takeover of AWS Service Accounts appeared first on SecurityWeek.

Original link
Original author: Eduard Kovacs