services / Google Cloud / IAM Roles
IAM custom roles created for use in IAM policies.
This is a sensitive service since it exposes information about organizational IAM policies and allows for potential manipulation of access.
iam.roles.get
Risks
Scope: CRITICAL
This privilege may grant access to sensitive data from a significant fraction of organizational functions, allow interruption of critical organizational services, or its exploit could lead to significant privilege escalation.
Links
Contributed by P0 Security
© 2023–present P0 Security and contributors to the IAM Privilege Catalog