AWS Instance Metadata Service v1 Exposed
The AWS Instance Metadata Service runs on a special internal link-local IP 169.254.169.154 and hosts configuration for the instance. Metadata Service v1 (IMDSv1) is vulnerable to exploitation by remote attackers in combination with other vulnerabilities such as server-side request forgery (SSRF).
An attacker can obtain AWS access keys from the Metadata Service. An attacker can use these access keys to access AWS cloud services, data, and resources. The breadth of impact depends on the permissions configured with the instance.