Filter
-Infinity
0

Amazon SageMaker WorkflowMD5 Hash Collision in SageMaker Workflow in aws/sagemaker-python-sdk

First published (updated )

ZDNetNavigating AI-powered cyber threats in 2025: 4 expert security tips for businesses

First published (updated )
News
ZDNet

Amazon Simple AffiliateSimple Amazon Affiliate <= 1.0.9 - Reflected Cross-Site Scripting

First published (updated )

YaySMTPVulnerability: SMTP for Amazon SES <= 1.7.1 - Unauthenticated Stored Cross-Site Scripting via Email Logs

7.2
First published (updated )

BleepingComputerwhoAMI attacks give hackers code execution on Amazon EC2 instances

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

The RegisterTriplestrength hits with ransomware, cloud crypto mining

First published (updated )

Dark ReadingAbandoned AWS Cloud Storage: A Major Cyberattack Vector

First published (updated )

BleepingComputerHow attackers abuse S3 Bucket Namesquatting — And How to Stop Them

First published (updated )

Dark ReadingChinese 'Infrastructure Laundering' Abuses AWS, Microsoft Cloud

First published (updated )

The RegisterAbandoned AWS S3 buckets can be reused in supply-chain attacks that would make SolarWinds look 'insignificant'

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

BleepingComputerAmazon Redshift gets new default settings to prevent data breaches

First published (updated )

Amazon Web Services (AWS)Issue with AWS Sign-in IAM User Login Flow - Possible Username Enumeration

First published (updated )

Amazon WorkSpacesIssue affecting Amazon WorkSpaces Clients (when running PCoIP protocol)

7.7
EPSS
0.04%
First published (updated )

Amazon WorkSpaces ClientIssue affecting Amazon WorkSpaces (when running Amazon DCV protocol), Amazon AppStream 2.0, and Amazon DCV clients

7.7
EPSS
0.04%
First published (updated )

Amazon Web Services (AWS)ZDI-24-1176: Amazon AWS aws-glue-with-s2s-vpn Uncontrolled Search Path Element Remote Code Execution Vulnerability

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Amazon Ion for JavaAmazon Ion is a Java implementation of the Ion data notation. Prior to version 1.10.5, a potential d…

First published (updated )

FreeBSD KernelOpenSSH regreSSHion Attack (CVE-2024-6387)

8.1
EPSS
71.47%
First published (updated )

Amazon FreeRTOSFreeRTOS-Plus-TCP Buffer Over-Read in DNS Response Parser

First published (updated )

AWS Deployment Frameworkaws-deployment-framework's potential risk can lead to privilege escalation

7.8
First published (updated )

Amazon OpenSSHPath Traversal

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Amazon FreeRTOSPrivilege Escalation in FreeRTOS Kernel ARMv7-M MPU ports and ARMv8-M ports with MPU support enabled

8.8
EPSS
0.04%
First published (updated )

maven/com.amazonaws:aws-encryption-sdk-javaAWS Encryption SDK for Java Improper Verification of Cryptographic Signature

EPSS
0.05%
First published (updated )

maven/software.amazon.ion:ion-javaIon Java StackOverflow vulnerability

7.5
EPSS
0.05%
First published (updated )

Amazon AWS Labs Sandbox AccountsSandbox Accounts for Events vulnerable to privilege escalation to read running events data

7.8
First published (updated )

Amazon AWS Labs Sandbox Accountssandbox-accounts-for-events security misconfiguration leads to budget exceed

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

composer/aws/aws-sdk-phpPotential URI resolution path traversal in the AWS SDK for PHP

First published (updated )

Amazon FreeRTOSTexas Instruments FREERTOS Integer Overflow or Wraparound

7.8
First published (updated )

Amazon OpenSearchOpenSearch Issue with tenant read-only permissions

First published (updated )

Apache Tomcat- Rapid Reset HTTP/2 vulnerability

First published (updated )

Amazon AWS DataAllAWS data.all vulnerable to RCE through user injection of Python Commands

8.8
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2025 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203