services / Google Cloud / Compute Engine health checks
Create and manage legacy HTTP health checks used by Cloud load balancers.
Exploitation relies on multiple additional exercisable risks, including poorly secured backend endpoints, the ability to route to this infrastructure, and provisioned forwarding rules to the subject backends.
compute.httpHealthChecks.useReadOnly
When combined with tailored health checks, may make backend infrastructure unroutable for intended uses.
Risks
Scope: MEDIUM
This privilege may grant access to confidential data, or its exploit can incur operational cost.
Links
Contributed by P0 Security
© 2023–present P0 Security and contributors to the IAM Privilege Catalog