amazon-ecr-credential-helper vulnerabilities

Direct Vulnerabilities

Known vulnerabilities in the amazon-ecr-credential-helper package. This does not include vulnerabilities belonging to this package’s dependencies.

Snyk's AI Trust Platform automatically finds the best upgrade path and integrates with your development workflows. Secure your code at zero cost.

Vulnerability	Vulnerable Version
H CVE-2025-61730	<0:0.11.0-3.amzn2023
H CVE-2025-68121	<0:0.11.0-3.amzn2023
H OS Command Injection	<0:0.11.0-3.amzn2023
H Arbitrary Argument Injection	<0:0.11.0-3.amzn2023
H Allocation of Resources Without Limits or Throttling	<0:0.11.0-3.amzn2023
H Allocation of Resources Without Limits or Throttling	<0:0.11.0-3.amzn2023
H Excessive Platform Resource Consumption within a Loop	<0:0.11.0-2.amzn2023
H Resource Exhaustion	<0:0.11.0-2.amzn2023
H Improper Certificate Validation	<0:0.11.0-2.amzn2023
H Improper Validation of Syntactic Correctness of Input	<0:0.10.1-3.amzn2023
H CVE-2025-58186	<0:0.10.1-3.amzn2023
H Allocation of Resources Without Limits or Throttling	<0:0.10.1-3.amzn2023
H Allocation of Resources Without Limits or Throttling	<0:0.10.1-3.amzn2023
H Allocation of Resources Without Limits or Throttling	<0:0.10.1-3.amzn2023
H Allocation of Resources Without Limits or Throttling	<0:0.10.1-3.amzn2023
H Creation of Immutable Text Using String Concatenation	<0:0.10.1-3.amzn2023
H Allocation of Resources Without Limits or Throttling	<0:0.10.1-3.amzn2023
H Reachable Assertion	<0:0.10.1-3.amzn2023
M Improper Certificate Validation	<0:0.10.1-2.amzn2023
M CVE-2025-4673	<0:0.10.1-2.amzn2023
H HTTP Request Smuggling	<0:0.10.0-1.amzn2023
M Misinterpretation of Input	<0:0.9.0-1.amzn2023
M Resource Exhaustion	<0:0.7.1-4.amzn2023
M Resource Exhaustion	<0:0.7.1-4.amzn2023
H Resource Exhaustion	<0:0.7.1-2.amzn2023
H HTTP Response Splitting	<0:0.7.1-2.amzn2023
H Resource Exhaustion	<0:0.7.1-1.amzn2023