CVE-2025-1969 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

Improper request input validation in Temporary Elevated Access Management (TEAM) for AWS IAM Identity Center allows a user to modify a valid request and spoof a…
Medium CVSS: 5.3

CVE-2025-1969

Improper request input validation in Temporary Elevated Access Management (TEAM) for AWS IAM Identity Center allows a user to modify a valid request and spoof an approval in TEAM.

Upgrade TEAM to the latest release v.1.2.2. Follow instructions in updating TEAM documentation for updating process
Vendor
-
Product
-
CWE
CWE-807
Yayın Tarihi
2025-03-04 19:15:38
Güncelleme
2025-10-14 20:15:33
Source Identifier
ff89ba41-3aa1-4d27-914a-91399e9639e5
KEV Date Added
-

Kategoriler

CWE-807 MEDIUM 2025

Referanslar

https://aws.amazon.com/security/security-bulletins/AWS-2025-004/ https://github.com/aws-samples/iam-identity-center-team/releases/tag/v1.2.2 https://github.com/aws-samples/iam-identity-center-team/security/advisories/GHSA-x9xv-r58p-qh86