Filter
AND
-Infinity
0

Apache Tomcat- Rapid Reset HTTP/2 vulnerability

First published (updated )

maven/software.amazon.ion:ion-javaIon Java StackOverflow vulnerability

7.5
EPSS
0.05%
First published (updated )

Amazon Ion for JavaAmazon Ion is a Java implementation of the Ion data notation. Prior to version 1.10.5, a potential d…

First published (updated )

Amazon OpensearchIssue with whitespace in JWT roles in OpenSearch

8.8
First published (updated )

FreeBSD KernelOpenSSH regreSSHion Attack (CVE-2024-6387)

8.1
EPSS
71.47%
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

YaySMTPVulnerability: SMTP for Amazon SES <= 1.7.1 - Unauthenticated Stored Cross-Site Scripting via Email Logs

7.2
First published (updated )

Amazon WorkSpaces ClientIssue affecting Amazon WorkSpaces (when running Amazon DCV protocol), Amazon AppStream 2.0, and Amazon DCV clients

7.7
EPSS
0.04%
First published (updated )

Arista CloudEOSOn affected platforms running Arista CloudEOS a size check bypass issue in the Software Forwarding Engine (Sfe) may allow buffer over reads in later code. Additionally, depending on configured options this may cause a recomputation of the TCP checksum ...

7.5
First published (updated )

Amazon WorkSpacesIssue affecting Amazon WorkSpaces Clients (when running PCoIP protocol)

7.7
EPSS
0.04%
First published (updated )

Amazon Fire OSImproper JPAKE implementation allows offline PIN brute-forcing due to the initialization of random v…

8.8
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Amazon AlexaAmazon Alexa software version 8960323972 on Echo Dot 2nd generation and 3rd generation devices poten…

7.6
First published (updated )

Amazon Web Services Cloud Development KitAWS CDK EKS overly permissive trust policies

8.8
First published (updated )

Amazon FreeRTOSFreeRTOS versions 10.2.0 through 10.4.5 do not prevent non-kernel code from calling the xPortRaisePr…

7.8
First published (updated )

Amazon SockeyeCode injection via unsafe YAML loading

7.8
First published (updated )

Amazon WorkSpaces ClientInteger Overflow

8.8
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Amazon WorkSpaces ClientBuffer Overflow

8.8
First published (updated )

ToughImproper sanitization of target names in tough

8.5
First published (updated )

ToughImproper sanitization of delegated role names in tough

8.2
First published (updated )

Amazon Fire OSAmazon Fire OS before 5.3.6.4 allows a man-in-the-middle attack against HTTP requests for "Terms of …

7.4
First published (updated )

Amazon AWS DataAllAWS data.all vulnerable to RCE through user injection of Python Commands

8.8
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Amazon FreeRTOSPrivilege Escalation in FreeRTOS Kernel ARMv7-M MPU ports and ARMv8-M ports with MPU support enabled

8.8
EPSS
0.04%
First published (updated )

Amazon HotpatchLog4j hot patch package privilege escalation

8.8
First published (updated )

Amazon HotpatchLog4j hot patch package privilege escalation

8.8
First published (updated )

Amazon Web Services aws-c-ioTLS hostname validation issues within AWS IoT Device SDKs on Windows

8.8
First published (updated )

Amazon Web Services aws-c-ioInconsistent CA override function behavior within AWS IoT Device SDKs on Unix systems

8.8
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Amazon Web Services aws-c-ioMissing SNI validation and inconsistent CA override function behavior within AWS IoT Device SDKs on Apple devices

7.2
First published (updated )

Amazon Web Services Internet of Things Device Software Development Kit v2 JavaTLS hostname validation issues within AWS IoT Device SDKs on macOS

8.8
First published (updated )

pip/aws-encryption-sdkRobustness weakness in AWS KMS and Encryption SDKs

8.1
First published (updated )

AWS Deployment Frameworkaws-deployment-framework's potential risk can lead to privilege escalation

7.8
First published (updated )

XFireInput Validation

7.4
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2025 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203