Virtualization & Cloud-specific Vulnerabilities

Question 1

Virtualization Security

Answer 1

Virtualization security → security practices specific to virtual environments where multiple virtual machines share the same physical hardware, requiring isolation controls, hardened hypervisors, and strict access management that differ from traditional systems.

Question 2

Virtualization Vulnerabilities

Answer 2

Virtualization vulnerabilities → weaknesses in virtual environments such as local privilege escalation, command injection, or information disclosure that can impact multiple virtual machines if the hypervisor or host is compromised.

Question 3

VM Escape Protection

Answer 3

Virtual machine escape protection → security controls designed to prevent an attacker from breaking out of a virtual machine and accessing the underlying hypervisor or other virtual machines on the host.

Question 4

Resource Reuse

Answer 4

Resource reuse → virtualization risk where shared resources such as memory, storage, or processors are reassigned between virtual machines, potentially exposing residual data if not properly cleared.

Question 5

Security in the Cloud

Answer 5

Security in the cloud → shared responsibility model where the cloud provider secures the underlying infrastructure while customers are responsible for securing their data, configurations, identities, and applications.

Question 6

DoS Cloud Attack

Answer 6

Denial of service cloud attack → attack that overwhelms cloud services with traffic or requests, consuming resources and making applications unavailable to legitimate users.

Question 7

Authentication Bypass Cloud Attack

Answer 7

Authentication bypass cloud attack → attack that exploits misconfigurations or vulnerabilities to gain access to cloud resources without proper identity verification.

Question 8

Directory Traversal Cloud Attack

Answer 8

Directory traversal cloud attack → attack that exploits faulty cloud configurations to access unauthorized directories or files, potentially exposing sensitive data.

Question 9

Remote Code Execution Cloud Attack

Answer 9

Remote code execution cloud attack → vulnerability that allows attackers to execute arbitrary code on cloud-based systems, often leading to full system compromise.

Question 10

Out of Bounds Write Cloud Attack

Answer 10

Out of bounds write cloud attack → vulnerability where a program writes data outside allocated memory boundaries in cloud workloads, potentially leading to crashes, data corruption, or code execution.