AWS Security ChangesHomeSearch

AWS awsaccountbilling documentation change

Service: awsaccountbilling · 2025-11-22 · Documentation low

File: awsaccountbilling/latest/aboutv2/managed-policies.md

Summary

Added new invoicing-related permissions (Create/Get/Put/Update/List/DeleteProcurementPortalPreference) to Billing and AWSBillingReadOnlyAccess managed policies

Security assessment

The changes add new permissions related to procurement portal management but do not indicate any security vulnerability being addressed. This appears to be a routine expansion of policy capabilities for new invoicing features rather than a response to a security issue. While permissions are security-related in general, there is no evidence this change fixes an exploit or vulnerability.

Diff

diff --git a/awsaccountbilling/latest/aboutv2/managed-policies.md b/awsaccountbilling/latest/aboutv2/managed-policies.md
index 1c0a714c2..753a49348 100644
--- a//awsaccountbilling/latest/aboutv2/managed-policies.md
+++ b//awsaccountbilling/latest/aboutv2/managed-policies.md
@@ -104,0 +105,15 @@ Change | Description | Date
+Billing and AWSBillingReadOnlyAccess – Update to existing policies |  We added the following invoicing permissions to `Billing`:
+
+  * `invoicing:CreateProcurementPortalPreference`
+  * `invoicing:GetProcurementPortalPreference`
+  * `invoicing:PutProcurementPortalPreference`
+  * `invoicing:UpdateProcurementPortalPreferenceStatus`
+  * `invoicing:ListProcurementPortalPreferences`
+  * `invoicing:DeleteProcurementPortalPreference`
+
+We added the following invoicing permissions to `AWSBillingReadOnlyAccess`:
+
+  * `invoicing:GetProcurementPortalPreference`
+  * `invoicing:ListProcurementPortalPreferences`
+
+| November 19, 2025