CVE-2015-6861
CVE-2015-6861 affects HPE Helion Eucalyptus (versions 3.4.0–4.2.0). The issue allows remote authenticated users to bypass the intended AssumeRole permission and assume an IAM role by abusing a policy setting on a user’s account. Impact is described as bypassing IAM permission controls with potent...