VYPR

Harmonix

by Awslabs

Source repositories

CVEs (1)

  • CVE-2025-14503Dec 15, 2025
    risk 0.00cvss epss 0.00

    An overly-permissive IAM trust policy in the Harmonix on AWS framework may allow IAM principals in the same AWS account to escalate privileges via role assumption. The sample code for the EKS environment provisioning role is configured to trust the account root principal, which…