Description
An untrusted search path issue in the GlobalDatabasePlugin in the AWS Advanced Go Wrapper for Amazon Aurora PostgreSQL will allow a remote authenticated low-privilege actor to escalate privileges to those of another Amazon RDS user, including rds_superuser, via a crafted function created by the actor that runs when that user connects to the cluster through the affected wrapper.



To remediate this issue, users should upgrade to the AWS Advanced Go Wrapper release 2026-05-26
Published: 2026-06-05
Score: 8.6 High
EPSS: n/a
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

The vulnerability is an untrusted search path flaw in the GlobalDatabasePlugin of the AWS Advanced Go Wrapper for Amazon Aurora PostgreSQL; a creator of an executed function can elevate their privileges to any RDS user, including rds_superuser, due to CWE-426.

Affected Systems

Affected systems are instances running the AWS Advanced Go Wrapper for Amazon Aurora PostgreSQL; the product is identified as AWS Advanced Go Wrapper and no specific version ranges are listed in the CNA data, so any installation before the 2026-05-26 release may be vulnerable.

Risk and Exploitability

With a CVSS score of 8.6 the issue represents high severity. The EPSS score is not available, and the vulnerability is not listed in the CISA KEV catalog. A remote authenticated low‑privilege user can trigger the flaw by crafting and executing a function, indicating that the attack vector is remote authenticated; given the high impact and the likelihood of exploitation when users can create functions, the risk to system integrity is significant.

Generated by OpenCVE AI on June 5, 2026 at 20:37 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade the AWS Advanced Go Wrapper to release 2026-05-26
  • Revoke or restrict the CREATE FUNCTION privilege from low‑privilege RDS users
  • Verify that only trusted users or roles can add functions by reviewing IAM policies and RDS parameter groups

Generated by OpenCVE AI on June 5, 2026 at 20:37 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Fri, 05 Jun 2026 19:30:00 +0000

Type Values Removed Values Added
Description An untrusted search path issue in the GlobalDatabasePlugin in the AWS Advanced Go Wrapper for Amazon Aurora PostgreSQL will allow a remote authenticated low-privilege actor to escalate privileges to those of another Amazon RDS user, including rds_superuser, via a crafted function created by the actor that runs when that user connects to the cluster through the affected wrapper. To remediate this issue, users should upgrade to the AWS Advanced Go Wrapper release 2026-05-26
Title Privilege Escalation in AWS Advanced Go Wrapper for Amazon Aurora PostgreSQL
First Time appeared Aws
Aws aws Advanced Go Wrapper
Weaknesses CWE-426
CPEs cpe:2.3:a:aws:aws_advanced_go_wrapper:*:*:*:*:*:*:*:*
Vendors & Products Aws
Aws aws Advanced Go Wrapper
References
Metrics cvssV3_1

{'score': 8, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H'}

cvssV4_0

{'score': 8.6, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N'}

Subscriptions

Aws Aws Advanced Go Wrapper
cve-icon MITRE

Status: PUBLISHED

Assigner: AMZN

Published:

Updated: 2026-06-05T19:23:51.007Z

Reserved: 2026-06-05T16:33:50.490Z

Link: CVE-2026-11401

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Awaiting Analysis

Published: 2026-06-05T20:17:28.883

Modified: 2026-06-05T20:49:22.527

Link: CVE-2026-11401

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-06-05T20:45:04Z

Weaknesses