Amazon - Efs Csi Driver CVE

Filtered by vendor Amazon Subscribe

Filtered by product Efs Csi Driver

Total 1 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2026-6437	1 Amazon	1 Efs Csi Driver	2026-06-01	N/A	6.5 MEDIUM
Improper neutralization of argument delimiters in the volume handling component in AWS EFS CSI Driver (aws-efs-csi-driver) before v3.0.1 allows remote authenticated users with PersistentVolume creation permissions to inject arbitrary mount options via comma injection. To remediate this issue, users should upgrade to version v3.0.1

Vulnerabilities (CVE)