Gbd199

**Name of the Vulnerable Software and Affected Versions** MinIO versions prior to RELEASE.2022-04-12T06-55-35Z **Description** A security issue was found in MinIO where a non-admin user can create service accounts for root or other admin users and then assume their access policies via the generated credentials, allowing the user to escalate privilege to that of the root user. **Recommendations** For versions prior to RELEASE.2022-04-12T06-55-35Z, update to RELEASE.2022-04-12T06-55-35Z or later to resolve the issue. As a temporary workaround, consider explicitly adding an `admin:CreateServiceAccount` deny policy, however, this will deny the user the ability to create their own service accounts as well.