Filter
AND
-Infinity
0

YaySMTPVulnerability: SMTP for Amazon SES <= 1.7.1 - Unauthenticated Stored Cross-Site Scripting via Email Logs

7.2
First published (updated )

Amazon WorkSpacesIssue affecting Amazon WorkSpaces Clients (when running PCoIP protocol)

7.7
EPSS
0.04%
First published (updated )

Amazon WorkSpaces ClientIssue affecting Amazon WorkSpaces (when running Amazon DCV protocol), Amazon AppStream 2.0, and Amazon DCV clients

7.7
EPSS
0.04%
First published (updated )

Amazon Ion for JavaAmazon Ion is a Java implementation of the Ion data notation. Prior to version 1.10.5, a potential d…

First published (updated )

FreeBSD KernelOpenSSH regreSSHion Attack (CVE-2024-6387)

8.1
EPSS
71.47%
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

AWS Deployment Frameworkaws-deployment-framework's potential risk can lead to privilege escalation

7.8
First published (updated )

Amazon FreeRTOSPrivilege Escalation in FreeRTOS Kernel ARMv7-M MPU ports and ARMv8-M ports with MPU support enabled

8.8
EPSS
0.04%
First published (updated )

maven/software.amazon.ion:ion-javaIon Java StackOverflow vulnerability

7.5
EPSS
0.05%
First published (updated )

Amazon AWS Labs Sandbox AccountsSandbox Accounts for Events vulnerable to privilege escalation to read running events data

7.8
First published (updated )

Amazon FreeRTOSTexas Instruments FREERTOS Integer Overflow or Wraparound

7.8
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Apache Tomcat- Rapid Reset HTTP/2 vulnerability

First published (updated )

Amazon AWS DataAllAWS data.all vulnerable to RCE through user injection of Python Commands

8.8
First published (updated )

Amazon Web Services Cloud Development KitAWS CDK EKS overly permissive trust policies

8.8
First published (updated )

Amazon AlexaAmazon Alexa software version 8960323972 on Echo Dot 2nd generation and 3rd generation devices poten…

7.6
First published (updated )

Amazon Fire OSImproper JPAKE implementation allows offline PIN brute-forcing due to the initialization of random v…

8.8
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Arista CloudEOSOn affected platforms running Arista CloudEOS a size check bypass issue in the Software Forwarding Engine (Sfe) may allow buffer over reads in later code. Additionally, depending on configured options this may cause a recomputation of the TCP checksum ...

7.5
First published (updated )

Amazon OpensearchIssue with whitespace in JWT roles in OpenSearch

8.8
First published (updated )

Amazon CloudWatch AgentA privilege escalation issue exists within the Amazon CloudWatch Agent for Windows, software for col…

7.1
First published (updated )

Amazon OpenSearch NotificationsOpenSearch Notifications is vulnerable to Server-Side Request Forgery (SSRF)

8.7
First published (updated )

Amazon Redshift Java Database Connectivity DriverIncorrect Type Cast

8.1
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Amazon OpenSearchOpenSearch vulnerable to Improper Authorization of Index Containing Sensitive Information

7.5
First published (updated )

IBM Disconnected Log CollectorPartial Path Traversal in com.amazonaws:aws-java-sdk-s3

7.9
First published (updated )

amazon opensearch rubyUnsafe YAML deserialization in opensearch-ruby

8.8
First published (updated )

Amazon HotpatchRace Condition

First published (updated )

Amazon SSM AgentRace Condition

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Amazon HotpatchLog4j hot patch package privilege escalation

8.8
First published (updated )

Amazon HotpatchLog4j hot patch package privilege escalation

8.8
First published (updated )

Amazon AWS Client VPNRace Condition

First published (updated )

Amazon AWS UI Components ReactCross site scripting in @awsui/components-react

8.8
First published (updated )

Amazon SockeyeCode injection via unsafe YAML loading

7.8
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2025 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203