VYPR
High severityNVD Advisory· Published Jul 12, 2022· Updated Sep 16, 2024

AccessKeyID validation bypass

CVE-2022-2385

Description

A security issue was discovered in aws-iam-authenticator where an allow-listed IAM identity may be able to modify their username and escalate privileges.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected packages

Versions sourced from the GitHub Security Advisory.

PackageAffected versionsPatched versions
sigs.k8s.io/aws-iam-authenticatorGo
< 0.5.90.5.9

Affected products

9

Patches

Vulnerability mechanics

References

7

News mentions

0

No linked articles in our index yet.