VYPR

AWS Advanced Go Wrapper

by AWS

Source repositories

CVEs (2)

  • CVE-2026-11401HigJun 5, 2026
    risk 0.45cvss 8.0epss 0.00

    An untrusted search path issue in the GlobalDatabasePlugin in the AWS Advanced Go Wrapper for Amazon Aurora PostgreSQL will allow a remote authenticated low-privilege actor to escalate privileges to those of another Amazon RDS user, including rds_superuser, via a crafted…

  • CVE-2025-12967HigNov 10, 2025
    risk 0.45cvss 8.0epss 0.00

    An issue in AWS Wrappers for Amazon Aurora PostgreSQL may allow for privilege escalation to rds_superuser role. A low privilege authenticated user can create a crafted function that could be executed with permissions of other Amazon Relational Database Service (RDS) users. We…