Google Fixes GCP Composer Flaw That Could’ve Led to Remote Code Execution – [email protected] (The Hacker News)

– [[{“value”:”A now-patched critical security flaw impacting Google Cloud Platform (GCP) Composer could have been exploited to achieve remote code execution on cloud servers by means of a supply chain attack technique called dependency confusion.
The vulnerability has been codenamed CloudImposer by Tenable Research.
“The vulnerability could have allowed an attacker to hijack an internal software dependency”}]]  – Read More  – The Hacker News