github.com/kubernetes-sigs/aws-iam-authenticator is vulnerable to privilege escalation. The vulnerability exists due to a lack of verification of authorization allowing an attacker to modify the username
in the allow-listed IAM identity and escalating its privileges.