LookOut: Discovering RCE and Internal Access on Looker (Google Cloud & On-Prem)
ID: 0016c60e-cf15-5c6b-b713-421da6f96f53
STIX ID: report--0016c60e-cf15-5c6b-b713-421da6f96f53
Feed Name: Tenable Blog
Threat Score
Tenable Research reported two critical "LookOut" vulnerabilities in Google Looker: an RCE via Git hooks config override and path traversal that can allow arbitrary code execution and potential cross-tenant access in cloud environments, and an authorization bypass that enables attachment to Looker's internal MySQL connections and full database exfiltration via error-based SQL injection; Google patched managed Looker instances, but customer-hosted/on-prem deployments must upgrade to specified patched versions immediately.
Your team is not currently subscribed to this feed. You must subscribe to it in order to see this post.