VDB

GCVE-110-CLOUD-2025-0042

GCVE-110-CLOUD-2025-0042
Advisory Published
Vulnetix · Advisory published March 21, 2025
AWS identified a security issue in the AWS CDK CLI versions 2.172.0-2.178.1 where temporary credentials from custom credential plugins could be printed to console output. This potentially exposes sensitive information to users with access to the console. The issue affects plugins that include an expiration property when returning temporary credentials.

Affected Products

VendorProductVersionsPlatforms
AWSSES

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›