ACK Detected Controllers CVEs

Open ack-bot opened this issue 3 weeks ago • 1 comments

CVE ID Type Severity Installed Version Fixed Version Affected Controllers Title

CVE-2025-61729 gobinary HIGH 1.25.4 1.24.11, 1.25.5 [eventbridge memorydb wafv2 applicationautoscaling cloudfront kafka mq pipes recyclebin ses sqs bedrock cloudwatch elasticache organizations sagemaker sfn ssm firehose keyspaces ecrpublic secretsmanager bedrockagent documentdb eks emrcontainers cloudwatchlogs acm prometheusservice s3 dynamodb iam kms elbv2 kinesis apigateway efs networkfirewall ram route53resolver sns cognitoidentityprovider opensearchserverless route53 codeartifact glue rds ecs opensearchservice s3control bedrockagentcorecontrol cloudtrail apigatewayv2 lambda acmpca athena ecr] Within HostnameError.Error(), when constructing an error string, there ...

CVE-2025-61727 gobinary MEDIUM 1.25.4 1.24.11, 1.25.5 [eventbridge memorydb wafv2 applicationautoscaling cloudfront kafka mq pipes recyclebin ses sqs bedrock cloudwatch elasticache organizations sagemaker sfn ssm firehose keyspaces ecrpublic secretsmanager bedrockagent documentdb eks emrcontainers cloudwatchlogs acm prometheusservice s3 dynamodb iam kms elbv2 kinesis apigateway efs networkfirewall ram route53resolver sns cognitoidentityprovider opensearchserverless route53 codeartifact glue rds ecs opensearchservice s3control bedrockagentcorecontrol cloudtrail apigatewayv2 lambda acmpca athena ecr] An excluded subdomain constraint in a certificate chain does not restr ...

CVE ID	Type	Severity	Installed Version	Fixed Version	Affected Controllers	Title
CVE-2025-61729	gobinary	HIGH	1.25.4	1.24.11, 1.25.5	[eventbridge memorydb wafv2 applicationautoscaling cloudfront kafka mq pipes recyclebin ses sqs bedrock cloudwatch elasticache organizations sagemaker sfn ssm firehose keyspaces ecrpublic secretsmanager bedrockagent documentdb eks emrcontainers cloudwatchlogs acm prometheusservice s3 dynamodb iam kms elbv2 kinesis apigateway efs networkfirewall ram route53resolver sns cognitoidentityprovider opensearchserverless route53 codeartifact glue rds ecs opensearchservice s3control bedrockagentcorecontrol cloudtrail apigatewayv2 lambda acmpca athena ecr]	Within HostnameError.Error(), when constructing an error string, there ...
CVE-2025-61727	gobinary	MEDIUM	1.25.4	1.24.11, 1.25.5	[eventbridge memorydb wafv2 applicationautoscaling cloudfront kafka mq pipes recyclebin ses sqs bedrock cloudwatch elasticache organizations sagemaker sfn ssm firehose keyspaces ecrpublic secretsmanager bedrockagent documentdb eks emrcontainers cloudwatchlogs acm prometheusservice s3 dynamodb iam kms elbv2 kinesis apigateway efs networkfirewall ram route53resolver sns cognitoidentityprovider opensearchserverless route53 codeartifact glue rds ecs opensearchservice s3control bedrockagentcorecontrol cloudtrail apigatewayv2 lambda acmpca athena ecr]	An excluded subdomain constraint in a certificate chain does not restr ...

Dec 09 '25 06:12 ack-bot

Hello @ack-bot 👋 Thank you for opening an issue in ACK! A maintainer will triage this issue soon.

We encourage community contributions, so if you're interested in tackling this yourself or suggesting a solution, please check out our Contribution and Code of Conduct guidelines.

You can find more information about ACK on our website.

Dec 09 '25 06:12 github-actions[bot]