github.com/aws/aws-sdk-go is vulnerable to information disclosure. An attacker who has write access to the target S3 bucket can reveal the information of the decryption failures through the endpoint. when the CBC
option is chosen as a content cipher
CPE | Name | Operator | Version |
---|---|---|---|
github.com/aws/aws-sdk-go | le | v1.33.21 | |
github.com/aws/aws-sdk-go | le | v1.33.21 |