Ethical Hacking Automation

Automate Recon and scanning process with Vidoc. All security teams in one place

Oracle Cloud Metadata Service Check

By kannthu

Critical
Vidoc logoVidoc Module
#exposure#config#oracle#proxy#misconfig
Description

What is the Oracle Cloud Metadata Service Check?

The Oracle Cloud Metadata Service Check module is designed to detect misconfigurations in the Oracle Cloud host. It targets the Oracle Cloud Metadata Service, which provides information about the instance. This module has a severity level of critical and was authored by sullo.

Impact

If the Oracle Cloud host is misconfigured as a proxy, it can allow unauthorized access to the instance metadata IMDSv1 service. This could potentially lead to significant access to the host and infrastructure.

How does the module work?

The module sends an HTTP request to the Oracle Cloud host, specifically targeting the "/opc/v1/instance" endpoint. The request includes the "Metadata: true" header to retrieve the instance metadata. The module then checks the response body for the presence of the "availabilityDomain" keyword.

Here is an example of the HTTP request:

GET http://<hostval>/opc/v1/instance HTTP/1.1
Host: <hostval>
Metadata: true

If the response body contains the "availabilityDomain" keyword, the module identifies a misconfiguration. This matching condition helps identify potential vulnerabilities in the Oracle Cloud host.

Please note that the actual JSON definitions for this module are not shown here for simplicity.

Module preview

Concurrent Requests (1)
1. HTTP Request template
Raw request
Matching conditions
word: availabilityDomain
Passive global matcher
No matching conditions.
On match action
Report vulnerability