Coursera Flash Sale
40% Off Coursera Plus for 3 Months!
Grab it
This conference talk explores a Use-After-Free vulnerability and novel RCU techniques discovered in the Netfilter module of kernel 5.10.102.2-microsoft-standard and earlier versions up to 6.9, which Azure Cloud Shell runs on. Learn how successful exploitation of these kernel vulnerabilities can enable attackers to gain elevated privileges within their own Cloudshell environment, potentially leading to container escape within a user's session and elevated access to cloud resources. Understand the security implications in the context of Azure Cloudshell's architecture, which runs on a non-shared kernel using an isolated hypervisor VM. Discover why accessing the host within the container VM doesn't lead to cross-tenant access due to the single-tenant hypervisor security boundary, but instead grants access within the user's session. Presented by Vamsi Krishna and Kandi Abhishek Reddy at Nullcon Goa 2025, this 27-minute presentation breaks down complex kernel security concepts for cybersecurity professionals.
