GitHub

Parse Javascript SDK vulnerable to prototype pollution in `Parse.Object` and internal APIs

This score calculates overall vulnerability severity from 0 to 10 and is based on the Common Vulnerability Scoring System (CVSS). Attack vector: More severe the more the remote (logically and ...
GitHub

S3 Express - CreateSession is not required for HeadBucket operations and causes failures when IAM policies restrict s3express:SessionMode

This was originally found as an issue with a Terraform provider and a Hashicorp partner found through trouble shooting that there was a bug with the AWS Go SDK: hashicorp/terraform-provider-aws#44095 ...