aws-sigv4

crates.io1 known CVE affecting this package

Aggregated from OSV, GitHub Security Advisories, NVD, and vendor advisories. Each CVE links to its full detail page with vendor advisories, patches, fixed versions, and remediation guidance.

CVEs affecting aws-sigv4page 1 of 1

CVE-2023-30610MEDIUMCVSS 5.5EG 5.5✓ Fixed in 0.55.1
2023-04-19
aws-sigv4 is a rust library for low level request signing in the aws cloud platform. The `aws_sigv4::SigningParams` struct had a derived `Debug` implementation. When debug-formatted, it would include a user's AWS access key, AWS secret key…

Check whether aws-sigv4 is used in your infrastructure

EchelonGraph scans your cloud and SBOMs to map every package to your actual deployments. See blast radius for aws-sigv4 CVEs against the assets you own.

Start Free Scan →