CVE-2026-25604

ADVISORY - github

Summary

In AWS Auth manager, the origin of the SAML authentication has been used as provided by the client and not verified against the actual instance URL. This allowed to gain access to different instances with potentially different access controls by reusing SAML response from other instances.

You should upgrade to 9.22.0 version of provider if you use AWS Auth Manager.

EPSS Score⁠: 0.0001 (0.009)

Common Weakness Enumeration (CWE)

ADVISORY - nist

CWE-346⁠

Origin Validation Error

ADVISORY - github

CWE-346⁠

Origin Validation Error

Impacted images

Advisories

Sign in to Docker Scout

See which of your images are affected by this CVE and how to fix them by signing into Docker Scout.