In my first article on Bedrock AgentCore Code Interpreters, I demonstrated that custom code interpreters can be coerced into performing AWS control plane actions by non-agentic identities. This presented a novel path to privilege escalation, whereby any user with access to custom code interpreters could effectively use any privilege assigned to those code interpreters. The […]
The post Sandboxed to Compromised: New Research Exposes Credential Exfiltration Paths in AWS Code Interpreters appeared first on Security Boulevard.
This article has been indexed from Security Boulevard
Read the original article: