Tenable Research Reveals Popular AI Tools Used in Cloud Environments are Highly Vulnerable
Tenable has released its Cloud AI Risk Report 2025, revealing significant security vulnerabilities in cloud-based AI systems. The study found that 70% of cloud AI workloads contain at least one unremediated vulnerability, with 30% specifically affected by the critical curl vulnerability (CVE-2023-38545).
The report analyzed AI services across major cloud providers including AWS, Google Cloud Platform, and Microsoft Azure, uncovering several critical security issues:
- 77% of organizations using Google Vertex AI Notebooks have overprivileged default configurations
- 14% of Amazon Bedrock users don't block public access to AI training buckets
- 91% of Amazon SageMaker users have potentially vulnerable notebook instances with default root access
These vulnerabilities could lead to data tampering, model manipulation, and compromised data integrity in AI systems.
Tenable ha pubblicato il suo Rapporto sul Rischio AI Cloud 2025, rivelando significative vulnerabilità di sicurezza nei sistemi AI basati su cloud. Lo studio ha scoperto che il 70% dei carichi di lavoro AI nel cloud contiene almeno una vulnerabilità non risolta, con il 30% specificamente colpito dalla critica vulnerabilità curl (CVE-2023-38545).
Il rapporto ha analizzato i servizi AI tra i principali fornitori di cloud, inclusi AWS, Google Cloud Platform e Microsoft Azure, rivelando diversi problemi critici di sicurezza:
- Il 77% delle organizzazioni che utilizzano Google Vertex AI Notebooks ha configurazioni predefinite con privilegi eccessivi
- Il 14% degli utenti di Amazon Bedrock non blocca l'accesso pubblico ai bucket di addestramento AI
- Il 91% degli utenti di Amazon SageMaker ha istanze di notebook potenzialmente vulnerabili con accesso root predefinito
Queste vulnerabilità potrebbero portare a manomissioni dei dati, manipolazione dei modelli e compromissione dell'integrità dei dati nei sistemi AI.
Tenable ha lanzado su Informe de Riesgo AI en la Nube 2025, revelando vulnerabilidades de seguridad significativas en los sistemas de IA basados en la nube. El estudio encontró que el 70% de las cargas de trabajo de IA en la nube contiene al menos una vulnerabilidad no remediada, con un 30% afectado específicamente por la crítica vulnerabilidad curl (CVE-2023-38545).
El informe analizó los servicios de IA entre los principales proveedores de nube, incluyendo AWS, Google Cloud Platform y Microsoft Azure, descubriendo varios problemas críticos de seguridad:
- El 77% de las organizaciones que utilizan Google Vertex AI Notebooks tienen configuraciones predeterminadas con privilegios excesivos
- El 14% de los usuarios de Amazon Bedrock no bloquean el acceso público a los buckets de entrenamiento de IA
- El 91% de los usuarios de Amazon SageMaker tienen instancias de notebooks potencialmente vulnerables con acceso root predeterminado
Estas vulnerabilidades podrían llevar a la manipulación de datos, manipulación de modelos y comprometer la integridad de los datos en los sistemas de IA.
Tenable는 2025년 클라우드 AI 위험 보고서를 발표하며 클라우드 기반 AI 시스템의 심각한 보안 취약점을 밝혀냈습니다. 연구에 따르면 클라우드 AI 작업의 70%가 최소한 하나의 수정되지 않은 취약점을 포함하고 있으며, 30%는 특히 치명적인 curl 취약점(CVE-2023-38545)의 영향을 받고 있습니다.
이 보고서는 AWS, Google Cloud Platform 및 Microsoft Azure와 같은 주요 클라우드 제공업체의 AI 서비스를 분석하여 여러 가지 중요한 보안 문제를 발견했습니다:
- Google Vertex AI Notebooks를 사용하는 조직의 77%가 과도한 기본 구성으로 설정되어 있습니다
- Amazon Bedrock 사용자의 14%는 AI 훈련 버킷에 대한 공용 액세스를 차단하지 않습니다
- Amazon SageMaker 사용자의 91%는 기본 루트 액세스가 있는 잠재적으로 취약한 노트북 인스턴스를 가지고 있습니다
이러한 취약점은 데이터 변조, 모델 조작 및 AI 시스템의 데이터 무결성 손상으로 이어질 수 있습니다.
Tenable a publié son Rapport sur le Risque AI Cloud 2025, révélant des vulnérabilités de sécurité significatives dans les systèmes d'IA basés sur le cloud. L'étude a révélé que 70 % des charges de travail d'IA dans le cloud contiennent au moins une vulnérabilité non corrigée, avec 30 % spécifiquement touchés par la vulnérabilité critique curl (CVE-2023-38545).
Le rapport a analysé les services d'IA parmi les principaux fournisseurs de cloud, y compris AWS, Google Cloud Platform et Microsoft Azure, mettant en lumière plusieurs problèmes critiques de sécurité :
- 77 % des organisations utilisant Google Vertex AI Notebooks ont des configurations par défaut avec des privilèges excessifs
- 14 % des utilisateurs d'Amazon Bedrock ne bloquent pas l'accès public aux seaux de formation AI
- 91 % des utilisateurs d'Amazon SageMaker ont des instances de notebook potentiellement vulnérables avec un accès root par défaut
Ces vulnérabilités pourraient entraîner une manipulation des données, une manipulation des modèles et une compromission de l'intégrité des données dans les systèmes d'IA.
Tenable hat seinen Cloud AI Risk Report 2025 veröffentlicht, der erhebliche Sicherheitsanfälligkeiten in cloudbasierten KI-Systemen aufzeigt. Die Studie ergab, dass 70% der Cloud-AI-Workloads mindestens eine nicht behobene Schwachstelle enthalten, wobei 30% speziell von der kritischen curl-Schwachstelle (CVE-2023-38545) betroffen sind.
Der Bericht analysierte KI-Dienste bei den großen Cloud-Anbietern, darunter AWS, Google Cloud Platform und Microsoft Azure, und deckte mehrere kritische Sicherheitsprobleme auf:
- 77% der Organisationen, die Google Vertex AI Notebooks verwenden, haben überprivilegierte Standardkonfigurationen
- 14% der Amazon Bedrock-Nutzer blockieren den öffentlichen Zugang zu KI-Trainings-Buckets nicht
- 91% der Amazon SageMaker-Nutzer haben potenziell verwundbare Notebook-Instanzen mit standardmäßigem Root-Zugriff
Diese Schwachstellen könnten zu Datenmanipulation, Modellmanipulation und einer Kompromittierung der Datenintegrität in KI-Systemen führen.
- Comprehensive security analysis across major cloud providers (AWS, GCP, Azure)
- First-of-its-kind research identifying specific AI security vulnerabilities in cloud services
- High vulnerability rate (70%) in cloud AI workloads indicates significant security risks
- Widespread misconfiguration issues across major cloud platforms could lead to data breaches
- Default security settings in popular cloud AI tools pose serious risks to data integrity
Insights
Tenable's Cloud AI Risk Report represents a strategic market positioning move that could strengthen the company's competitive standing in the rapidly evolving exposure management space. By identifying critical vulnerabilities in cloud AI infrastructure from major providers, Tenable demonstrates valuable technical expertise at the intersection of two high-growth markets - cloud security and AI security.
This research highlighting that 70% of cloud AI workloads contain vulnerabilities serves as both a marketing tool and a business development catalyst. It effectively creates demand awareness for Tenable's solutions while positioning the company as a thought leader in an emerging high-value cybersecurity segment.
From a business perspective, the timing is opportune as organizations rapidly adopt cloud AI services. The identified risks across AWS, GCP, and Azure environments represent an addressable market opportunity for Tenable's exposure management solutions. The company appears to be executing a classic security vendor strategy - publish research demonstrating risks, then offer solutions to mitigate those exact vulnerabilities.
While this report doesn't directly announce financial outcomes or partnerships, it serves as indirect product marketing that could accelerate enterprise adoption of Tenable's cloud security offerings. The strategic value lies in how this positions Tenable against competitors in the cloud security space by demonstrating specialized expertise in AI security - a differentiation point in a crowded market.
Analysis finds
COLUMBIA, Md. , March 19, 2025 (GLOBE NEWSWIRE) -- Tenable®, the exposure management company, today announced the release of its Cloud AI Risk Report 2025, which found that cloud-based AI is prone to avoidable toxic combinations that leave sensitive AI data and models vulnerable to manipulation, data tampering and data leakage.
Cloud and AI are undeniable game changers for businesses. However, both introduce complex cyber risks when combined. The Tenable Cloud AI Risk Report 2025 highlights the current state of security risks in cloud AI development tools and frameworks, and in AI services offered by the three major cloud providers—Amazon Web Services (AWS), Google Cloud Platform (GCP) and Microsoft Azure. The key findings from the report include:
- Cloud AI workloads aren’t immune to vulnerabilities: Approximately
70% of cloud AI workloads contain at least one unremediated vulnerability. In particular, Tenable Research found CVE-2023-38545—a critical curl vulnerability—in30% of cloud AI workloads. - Jenga®-style1 cloud misconfigurations exist in managed AI services:
77% of organizations have the overprivileged default Compute Engine service account configured in Google Vertex AI Notebooks. This means all services built on this default Compute Engine are at risk. - AI training data is susceptible to data poisoning, threatening to skew model results:
14% of organizations using Amazon Bedrock do not explicitly block public access to at least one AI training bucket and5% have at least one overly permissive bucket. - Amazon SageMaker notebook instances grant root access by default: As a result,
91% of Amazon SageMaker users have at least one notebook that, if compromised, could grant unauthorized access, which could result in the potential modification of all files on it.
“When we talk about AI usage in the cloud, more than sensitive data is on the line. If a threat actor manipulates the data or AI model, there can be catastrophic long-term consequences, such as compromised data integrity, compromised security of critical systems and degradation of customer trust,” said Liat Hayun, VP of Research and Product Management, Cloud Security, Tenable. “Cloud security measures must evolve to meet the new challenges of AI and find the delicate balance between protecting against complex attacks on AI data and enabling organizations to achieve responsible AI innovation.”
1 The Jenga®-style concept, coined by Tenable, identifies the tendency of cloud providers to build one service on top of the other, with “behind the scenes” building blocks inheriting risky defaults from one layer to the next. Such cloud misconfigurations, especially in AI environments, can have severe risk implications if exploited.
About Tenable
Tenable® is the exposure management company, exposing and closing the cybersecurity gaps that erode business value, reputation and trust. The company’s AI-powered exposure management platform radically unifies security visibility, insight and action across the attack surface, equipping modern organizations to protect against attacks from IT infrastructure to cloud environments to critical infrastructure and everywhere in between. By protecting enterprises from security exposure, Tenable reduces business risk for approximately 44,000 customers around the globe. Learn more at tenable.com.
Media Contact:
Tenable
tenablepr@tenable.com
FAQ
What percentage of cloud AI workloads are vulnerable according to Tenable's 2025 report?
What security risk did Tenable (TENB) identify in Google Vertex AI Notebooks?
How many Amazon Bedrock users are at risk of data poisoning according to Tenable's 2025 study?
What security vulnerability did Tenable's 2025 report find in Amazon SageMaker?
