Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/12/16 7:48 p.m.6 views

CVE-2025-14503

An overly-permissive IAM trust policy in the Harmonix on AWS framework may allow IAM principals in the same AWS account to escalate privileges via role assumption. The sample code for the EKS environment provisioning role is configured to trust the account root principal, which may enable any IAM...

8.6CVSS7.5AI score0.0043EPSS
Exploits0References1
OSV
OSV
added 2025/12/15 8:15 p.m.6 views

CVE-2025-14503

An overly-permissive IAM trust policy in the Harmonix on AWS framework may allow IAM principals in the same AWS account to escalate privileges via role assumption. The sample code for the EKS environment provisioning role is configured to trust the account root principal, which may enable any IAM...

8.6CVSS7.4AI score
Exploits0References3
Vulnrichment
Vulnrichment
added 2025/12/15 7:45 p.m.2 views

CVE-2025-14503 Overly Permissive Trust Policy in Harmonix on AWS EKS

An overly-permissive IAM trust policy in the Harmonix on AWS framework may allow IAM principals in the same AWS account to escalate privileges via role assumption. The sample code for the EKS environment provisioning role is configured to trust the account root principal, which may enable any IAM...

8.6CVSS7.1AI score0.0043EPSS
Exploits0References3
Cvelist
Cvelist
added 2025/12/15 7:45 p.m.21 views

CVE-2025-14503 Overly Permissive Trust Policy in Harmonix on AWS EKS

An overly-permissive IAM trust policy in the Harmonix on AWS framework may allow IAM principals in the same AWS account to escalate privileges via role assumption. The sample code for the EKS environment provisioning role is configured to trust the account root principal, which may enable any IAM...

8.6CVSS0.0043EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2025/12/15 12:0 a.m.9 views

PT-2025-51281

Name of the Vulnerable Software and Affected Versions Harmonix on AWS versions 0.3.0 through 0.4.1 Description An overly-permissive IAM trust policy within the Harmonix on AWS framework could allow IAM principals within the same AWS account to escalate privileges through role assumption. The EKS...

8.6CVSS7.2AI score0.0043EPSS
Exploits0References7
Rows per page
Query Builder