basti-cdk@1.0.0-alpha.1 vulnerabilities

Cost-efficient bastion host with a CLI tool for convenient access to your AWS resources

  • latest version

    1.1.1

  • latest non vulnerable version

  • first published

    1 years ago

  • latest version published

    1 months ago

  • licenses detected

  • Direct Vulnerabilities

    Known vulnerabilities in the basti-cdk package. This does not include vulnerabilities belonging to this package’s dependencies.

    How to fix?

    Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

    Fix for free
    VulnerabilityVulnerable Version
    • M
    Incorrect Default Permissions

    basti-cdk is a construct library that allows you to create cost-efficient bastion instances and easily connect to your infrastructure with Basti CLI.

    Affected versions of this package are vulnerable to Incorrect Default Permissions via the bastic connect function due to missing ssm:SessionDocumentAccessCheck in the provided Minimal IAM Policy. An attacker can get a shell session on the bastion, not just the intended access for Port Forwarding.

    How to fix Incorrect Default Permissions?

    Upgrade basti-cdk to version 1.0.1 or higher.

    <1.0.1