Containers

Tom Taylor-MacLean Mohit Gupta
19 Aug 2025

Another ECS Privilege Escalation Path

ECS has a range of known privilege escalation vectors. We discovered another which relies on using functionality designed for the ECS agent to self-register a compromised EC2 and override a task definition. A variant of this for ECS on Fargate is also discussed.