PT0-003
Attacks and Exploits
hard
Question 13 of 34

A penetration tester is testing a cloud environment and discovers that an EC2 instance has the Instance Metadata Service (IMDS) accessible without IMDSv2 enforcement. What attack is possible through this misconfiguration?

AExploiting the instance's S3 bucket policy
BAccessing the instance metadata endpoint to retrieve temporary IAM credentials
CPerforming a VLAN hopping attack to pivot to other cloud instances
DInjecting code into the cloud provider's management plane

More Attacks and Exploits Questions

34 questions

Full CompTIA PenTest+ Practice Test

All topics covered

All CompTIA PenTest+ Questions

Browse by topic

Related Questions

Which attack technique involves capturing a user's authentication hash and using it directly to auth...

easy

A penetration tester is testing a web application login form and suspects it may be vulnerable to SQ...

medium

During a network penetration test, a tester performs a VLAN hopping attack using double tagging. Wha...

medium

A penetration tester has gained initial access to a Linux system and wants to escalate privileges. R...

hard

A penetration tester is conducting a web application test and identifies that the application reflec...

medium
View all Attacks and Exploits questions

Educational Content — CertQnA practice questions are written against official exam objectives, covering the same domains tested on the real exam. All content is original and independent — not actual exam questions, not affiliated with any certification vendor. Learn more about our content policy

Discussion

Be the first to share your understanding of this concept

⚠️ Discussion is for concept clarification only. Do not share or request actual exam questions or answers.

Sign in to join the discussion

Sign InCreate free account