VYPR

Go modules package

github.com/openbao/openbao-plugins

pkg:golang/github.com/openbao/openbao-plugins

Vulnerabilities (1)

  • CVE-2025-59048Oct 23, 2025
    affected < 0.1.1fixed 0.1.1

    OpenBao's AWS Plugin generates AWS access credentials based on IAM policies. Prior to version 0.1.1, the AWS Plugin is vulnerable to cross-account IAM role Impersonation in the AWS auth method. The vulnerability allows an IAM role from an untrusted AWS account to authenticate by