Which CVE IDs does AWS-2025-028 cover?

AWS-2025-028 covers the following CVE IDs: CVE-2025-12967. Each CVE has its own detail page on EchelonGraph Pulse with the synthesized EG score.

AWS-2025-028

Privilege Escalation in Aurora PostgreSQL using AWS JDBC Wrapper, AWS Go Wrapper, AWS NodeJS Wrapper, AWS Python Wrapper, AWS PGSQL ODBC driver

Vendor

AWS Security Bulletins

Published

November 10, 2025

Last Modified

—

🔗 CVE IDs covered (1)

CVE-2025-12967 →

📋 Description

Bulletin ID: AWS-2025-028 Scope: AWS Content Type: Important (requires attention) Publication Date: 2025/11/10 10:15 AM PDT Description: Amazon Aurora PostgreSQL a fully managed relational database engine that's compatible with PostgreSQL. We identified CVE-2025-12967, an issue in AWS Wrappers for Amazon Aurora PostgreSQL may allow for privilege escalation to rds_superuser role. A low privilege authenticated user can create a crafted function that could be executed with permissions of other Amazon Relational Database Service (RDS) users. Impacted versions: - AWS JDBC Wrapper - AWS Go Wrapper - AWS NodeJS Wrapper - AWS Python Wrapper - AWS ODBC driver

🔗 References (1)

advisoryhttps://aws.amazon.com/security/security-bulletins/rss/aws-2025-028/