Published onMarch 5, 2025IAM WriteupSSRFCloudLinuxHacking-ClubIAM Machine has the CVE-2021-40438 vulnerability, which allows SSRF in Apache, resulting in temporary AWS credentials and privilege escalation to root.