Filter
AND

FreeBSD FreeBSDOpenSSH regreSSHion Attack (CVE-2024-6387)

8.1
EPSS
71.47%
First published (updated )

Amazon Aws Deployment Frameworkaws-deployment-framework's potential risk can lead to privilege escalation

7.8
First published (updated )

Amazon FreertosPrivilege Escalation in FreeRTOS Kernel ARMv7-M MPU ports and ARMv8-M ports with MPU support enabled

8.8
EPSS
0.04%
First published (updated )

Amazon IonIon Java StackOverflow vulnerability

7.5
EPSS
0.05%
First published (updated )

CVE-2023-51386Sandbox Accounts for Events vulnerable to privilege escalation to read running events data

7.8
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Amazon FreertosTexas Instruments FREERTOS Integer Overflow or Wraparound

7.8
First published (updated )

Apache Tomcat- Rapid Reset HTTP/2 vulnerability

First published (updated )

Amazon Aws-dataallAWS data.all vulnerable to RCE through user injection of Python Commands

8.8
First published (updated )

Amazon Aws Cloud Development KitAWS CDK EKS overly permissive trust policies

8.8
First published (updated )

Amazon AlexaAmazon Alexa software version 8960323972 on Echo Dot 2nd generation and 3rd generation devices poten…

7.6
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Amazon Fire OSImproper JPAKE implementation allows offline PIN brute-forcing due to the initialization of random v…

8.8
First published (updated )

Arista CloudEOSOn affected platforms running Arista CloudEOS an issue in the Software Forwarding Engine (Sfe) can l…

7.5
First published (updated )

Amazon OpensearchCVE-2023-23612

First published (updated )

Amazon CloudWatch AgentA privilege escalation issue exists within the Amazon CloudWatch Agent for Windows, software for col…

7.1
First published (updated )

Amazon Opensearch NotificationsOpenSearch Notifications is vulnerable to Server-Side Request Forgery (SSRF)

8.7
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Amazon Amazon Web Services Redshift Java Database Connectivity DriverIncorrect Type Cast

8.1
First published (updated )

Amazon OpensearchOpenSearch vulnerable to Improper Authorization of Index Containing Sensitive Information

7.5
First published (updated )

IBM Disconnected Log CollectorPartial Path Traversal in com.amazonaws:aws-java-sdk-s3

7.9
First published (updated )

Amazon OpensearchUnsafe YAML deserialization in opensearch-ruby

8.8
First published (updated )

Amazon HotpatchRace Condition

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Amazon Amazon Ssm AgentRace Condition

First published (updated )

Amazon Log4jhotpatchLog4j hot patch package privilege escalation

8.8
First published (updated )

Amazon Log4jhotpatchLog4j hot patch package privilege escalation

8.8
First published (updated )

Amazon Aws Client VpnRace Condition

First published (updated )

Amazon Awsui\/components-reactCross site scripting in @awsui/components-react

8.8
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Amazon SockeyeCode injection via unsafe YAML loading

7.8
First published (updated )

Amazon WorkSpacesInteger Overflow

8.8
First published (updated )

Amazon WorkSpacesBuffer Overflow

8.8
First published (updated )

Amazon Amazon Web Services Internet Of Things Device Software Development Kit V2Missing SNI validation and inconsistent CA override function behavior within AWS IoT Device SDKs on Apple devices

7.2
First published (updated )

Amazon Amazon Web Services Internet Of Things Device Software Development Kit V2Inconsistent CA override function behavior within AWS IoT Device SDKs on Unix systems

8.8
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Amazon Amazon Web Services Internet Of Things Device Software Development Kit V2TLS hostname validation issues within AWS IoT Device SDKs on macOS

8.8
First published (updated )

Amazon Amazon Web Services Internet Of Things Device Software Development Kit V2TLS hostname validation issues within AWS IoT Device SDKs on Windows

8.8
First published (updated )

Amazon FreertosFreeRTOS versions 10.2.0 through 10.4.5 do not prevent non-kernel code from calling the xPortRaisePr…

7.8
First published (updated )

Amazon ToughImproper sanitization of delegated role names in tough

8.2
First published (updated )

Amazon ToughImproper sanitization of target names in tough

8.5
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Amazon Open DistroSSRF

7.1
First published (updated )

Amazon Aws Encryption SdkRobustness weakness in AWS KMS and Encryption SDKs

8.1
First published (updated )

Amazon FirecrackerIn Amazon AWS Firecracker before 0.21.3, and 0.22.x before 0.22.1, the serial console buffer can gro…

7.5
First published (updated )

Amazon ToughImproper verification of signature threshold in tough

8.6
First published (updated )

Amazon Blink Xt2 Sync Module FirmwareBlink XT2 Sync Module firmware prior to 2.13.11 allows remote attackers to execute arbitrary code an…

7.2
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Amazon Blink Xt2 Sync Module FirmwareOS Command Injection, Command Injection

8.8
First published (updated )

Amazon Blink Xt2 Sync Module FirmwareOS Command Injection, Command Injection

8.8
First published (updated )

Amazon Blink Xt2 Sync Module FirmwareOS Command Injection, Command Injection

8.8
First published (updated )

Amazon Blink Xt2 Sync Module FirmwareOS Command Injection, Command Injection

8.8
First published (updated )

Amazon Freertos\+fatUse After Free

7.5
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Amazon Amazon Web Services FreertosAmazon FreeRTOS up to and including v1.4.8 lacks length checking in prvProcessReceivedPublish, resul…

7.5
First published (updated )

Amazon Fire OSAmazon Fire OS before 5.3.6.4 allows a man-in-the-middle attack against HTTP requests for "Terms of …

7.4
First published (updated )

Amazon Amazon Web Services FreertosDivide by Zero

7.4
First published (updated )

Amazon Amazon Web Services FreertosBuffer Overflow

8.1
First published (updated )

Amazon Amazon Web Services FreertosBuffer Overflow

8.1
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203