Cybersecurity analysts have revealed specifics of a recently-corrected privilege elevation weakness in Google Cloud Platform (GCP) Cloud Run, which might have enabled a nefarious individual to retrieve container images and potentially insert harmful code.
“The weakness had the potential to permit such an identity to exploit its Google Cloud Run revision modification privileges to obtain private Google Artifact.