PT-2023-33043 · Amazon · Aws Encryption Sdk +2

Name of the Vulnerable Software and Affected Versions: Strongbox versions prior to 0.5.0 Description: The issue allows an attacker with read-only access to a Strongbox secret to craft a valid encrypted secret, which also affects the usefulness of audit logs from KMS. This is caused by a bug in th...