Automate Recon and scanning process with Vidoc. All security teams in one place
By kannthu
The Oracle Cloud Metadata Service Check module is designed to detect misconfigurations in the Oracle Cloud host. It targets the Oracle Cloud Metadata Service, which provides information about the instance. This module has a severity level of critical and was authored by sullo.
If the Oracle Cloud host is misconfigured as a proxy, it can allow unauthorized access to the instance metadata IMDSv1 service. This could potentially lead to significant access to the host and infrastructure.
The module sends an HTTP request to the Oracle Cloud host, specifically targeting the "/opc/v1/instance" endpoint. The request includes the "Metadata: true" header to retrieve the instance metadata. The module then checks the response body for the presence of the "availabilityDomain" keyword.
Here is an example of the HTTP request:
GET http://<hostval>/opc/v1/instance HTTP/1.1
Host: <hostval>
Metadata: true
If the response body contains the "availabilityDomain" keyword, the module identifies a misconfiguration. This matching condition helps identify potential vulnerabilities in the Oracle Cloud host.
Please note that the actual JSON definitions for this module are not shown here for simplicity.