esp32-aws-iot icon indicating copy to clipboard operation
esp32-aws-iot copied to clipboard

Published 20 hours ago verified publisher icon jandelgado

Risk: over-authorization of AWS IoT policy

Open P-Verifier opened this issue 2 years ago • 0 comments

We are a security research team and we recently discovered that there is an over-authorization security issue with this project's IoT policy. The affected file is as following:

1. esp32-aws-iot/examples/iam/thing_policy_full_permissi.json

P-Verifier avatar May 16 '22 12:05 P-Verifier