Go modules package
github.com/kubernetes-sigs/aws-efs-csi-driver
pkg:golang/github.com/kubernetes-sigs/aws-efs-csi-driver
Vulnerabilities (2)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2026-6437 | Med | 6.5 | < 1.7.8-0.20260416142831-51806c22c575 | 1.7.8-0.20260416142831-51806c22c575 | Apr 17, 2026 | Improper neutralization of argument delimiters in the volume handling component in AWS EFS CSI Driver (aws-efs-csi-driver) before v3.0.1 allows remote authenticated users with PersistentVolume creation permissions to inject arbitrary mount options via comma injection. To reme | |
| CVE-2022-46174 | — | < 1.4.8 | 1.4.8 | Dec 28, 2022 | efs-utils is a set of Utilities for Amazon Elastic File System (EFS). A potential race condition issue exists within the Amazon EFS mount helper in efs-utils versions v1.34.3 and below. When using TLS to mount file systems, the mount helper allocates a local port for stunnel to r |
- affected < 1.7.8-0.20260416142831-51806c22c575fixed 1.7.8-0.20260416142831-51806c22c575
Improper neutralization of argument delimiters in the volume handling component in AWS EFS CSI Driver (aws-efs-csi-driver) before v3.0.1 allows remote authenticated users with PersistentVolume creation permissions to inject arbitrary mount options via comma injection. To reme
- CVE-2022-46174Dec 28, 2022affected < 1.4.8fixed 1.4.8
efs-utils is a set of Utilities for Amazon Elastic File System (EFS). A potential race condition issue exists within the Amazon EFS mount helper in efs-utils versions v1.34.3 and below. When using TLS to mount file systems, the mount helper allocates a local port for stunnel to r