risks / Policy destruction
Description
Allows an attacker to delete IAM policies. When these policies would otherwise deny attacker access, can allow an attacker both vertical and lateral privilege escalation.
Risk: CRITICAL
Exploited in isolation, this risk has the potential to disrupt central organizational operations, destroy trust, or create significant liability. Alternatively, this risk gives attackers access to broadly provisioned identities that enable the above impacts (such as root privilege escalation risks).
Mitigations
- Favor restricted allow policies over deny policies
Links
Affected Privileges
An attacker may be able to exploit this risk if they gain any of the following privileges:
Amazon Web Services
Google Cloud Platform
Kubernetes
Google Workspace
© 2023–present P0 Security and contributors to the IAM Privilege Catalog