aws-appsync-iot-core-realtime-example icon indicating copy to clipboard operation
aws-appsync-iot-core-realtime-example copied to clipboard

Published 20 hours ago verified publisher icon aws-samples

Risk: over-authorization of AWS IoT policy

Open P-Verifier opened this issue 2 years ago • 0 comments

We are a security research team and we recently discovered that there is an over-authorization security issue with this project's IoT policy. The affected file is as following:

1. aws-appsync-iot-core-realtime-example/sensor/policy.json

P-Verifier avatar May 16 '22 12:05 P-Verifier