Filter
-Infinity
0

Trending

Last week
Last month
Last year

Software

amazon kindle
31
amazon freertos
22
amazon fire os
12
amazon opensearch
8
amazon blink xt2 sync module
7
amazon blink xt2 sync module firmware
7
amazon kindle fire hd
7
amazon payfort php sdk
5
amazon alexa
4
amazon aws iot device sdk v2 for node.js
4
amazon aws software development kit
4
amazon opensearch notifications
4
amazon web services (aws)
4
amazon web services internet of things device software development kit v2 java
4
amazon web services iot device sdk for python v2
4
amazon web services iot device sdk v2 c++
4
amazon aws cloudformation
3
amazon echo dot
3
amazon fire tv stick 3rd gen
3
amazon firecracker
3
amazon hotpatch
3
amazon web services
3
amazon web services aws-c-io
3
amazon workspaces client
3
amazon audible
2
amazon aws client vpn
2
amazon aws labs sandbox accounts
2
amazon flexible payments service
2
amazon ion for java
2
amazon kindle firmware
2
amazon kindle for pc
2
amazon kindle touch
2
amazon web services linux
2
amazon workspaces
2
amazon appstream 2.0
1
amazon aws dataall
1
amazon aws javascript s3 explorer
1
amazon aws marketplace
1
amazon aws shared configuration file loader
1
amazon aws signature version 4
1
amazon aws ui components react
1
amazon cloudfront
1
amazon cloudwatch agent
1
amazon dcv clients
1
amazon ec2 api tools
1
amazon echo firmware
1
amazon echo plus
1
amazon echo plus firmware
1
amazon echo show firmware
1
amazon echo spot firmware
1

BleepingComputerHackers target SSRF bugs in EC2-hosted sites to steal AWS credentials

Exploited
Zeroday
First published (updated )
News
BleepingComputer

Amazon AWS CloudFormationZDI-25-205: Amazon AWS CloudFormation Templates Uncontrolled Search Path Element Remote Code Execution Vulnerability

First published (updated )
ZDI-CAN-25426

Amazon AWS CloudFormationAmazon AWS CloudFormation Templates Uncontrolled Search Path Element Remote Code Execution Vulnerability

First published (updated )
ZDI-25-205

Amazon AWS CloudFormationAmazon AWS CloudFormation Templates Uncontrolled Search Path Element Remote Code Execution Vulnerability

First published (updated )
ZDI-25-206

Apache Tomcat- Rapid Reset HTTP/2 vulnerability

high
7.5
Exploited
Zeroday
First published (updated )
CVE-2023-44487

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Amazon Simple AffiliateSimple Amazon Affiliate <= 1.0.9 - Reflected Cross-Site Scripting

medium
6.1
First published (updated )
CVE-2025-2077

ownCloudUnspecified vulnerability in ownCloud Server before 4.0.12 allows remote attackers to obtain sensiti…

medium
5
First published (updated )
CVE-2013-0302

OpenSSH serverPath Traversal

medium
5.3
First published (updated )
CVE-2023-35812

Amazon SageMaker WorkflowMD5 Hash Collision in SageMaker Workflow in aws/sagemaker-python-sdk

medium
5.9
First published (updated )
CVE-2025-0508

maven/software.amazon.ion:ion-javaIon Java StackOverflow vulnerability

high
7.5
EPSS
0.05%
First published (updated )
CVE-2024-21634

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Amazon Ion for JavaAmazon Ion is a Java implementation of the Ion data notation. Prior to version 1.10.5, a potential d…

high
7
First published (updated )
REDHAT-BUG-2304311

ZDNetNavigating AI-powered cyber threats in 2025: 4 expert security tips for businesses

Exploited
First published (updated )
News
ZDNet

Amazon OpensearchField-level security issue with .keyword fields in OpenSearch

medium
6.5
First published (updated )
CVE-2023-23613

Amazon OpensearchIssue with whitespace in JWT roles in OpenSearch

high
8.8
First published (updated )
CVE-2023-23612

Amazon OpenSearchIssue in Anomaly Detection with document and field level rules in numerical feature aggregations

medium
5.7
First published (updated )
CVE-2023-23933

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

FreeBSD KernelOpenSSH regreSSHion Attack (CVE-2024-6387)

high
8.1
EPSS
71.47%
Trending
Year
First published (updated )
CVE-2024-6387

Amazon OpenSearchTime discrepancy in authentication responses in OpenSearch

medium
5.3
First published (updated )
CVE-2023-25806

YaySMTPVulnerability: SMTP for Amazon SES <= 1.7.1 - Unauthenticated Stored Cross-Site Scripting via Email Logs

high
7.2
First published (updated )
CVE-2025-0957

The RegisterTriplestrength hits with ransomware, cloud crypto mining

First published (updated )
News
The Register

BleepingComputerwhoAMI attacks give hackers code execution on Amazon EC2 instances

First published (updated )
News
BleepingComputer

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Amazon WorkSpaces ClientIssue affecting Amazon WorkSpaces (when running Amazon DCV protocol), Amazon AppStream 2.0, and Amazon DCV clients

high
7.7
EPSS
0.04%
First published (updated )
CVE-2025-0500

Arista CloudEOSOn affected platforms running Arista CloudEOS a size check bypass issue in the Software Forwarding Engine (Sfe) may allow buffer over reads in later code. Additionally, depending on configured options this may cause a recomputation of the TCP checksum ...

high
7.5
First published (updated )
CVE-2023-24513

Amazon WorkSpacesIssue affecting Amazon WorkSpaces Clients (when running PCoIP protocol)

high
7.7
EPSS
0.04%
First published (updated )
CVE-2025-0501

Dark ReadingAbandoned AWS Cloud Storage: A Major Cyberattack Vector

Exploited
First published (updated )
News
Dark Reading

Amazon AWS Signature Version 4AWS SDK for Rust will log AWS credentials when TRACE-level logging is enabled for request sending

medium
5.5
First published (updated )
CVE-2023-30610

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

BleepingComputerHow attackers abuse S3 Bucket Namesquatting — And How to Stop Them

Exploited
First published (updated )
News
BleepingComputer

Dark ReadingChinese 'Infrastructure Laundering' Abuses AWS, Microsoft Cloud

First published (updated )
News
Dark Reading

The RegisterAbandoned AWS S3 buckets can be reused in supply-chain attacks that would make SolarWinds look 'insignificant'

Exploited
First published (updated )
News
The Register

BleepingComputerAmazon Redshift gets new default settings to prevent data breaches

First published (updated )
News
BleepingComputer

Amazon Fire OSAn Improper Enforcement of Behavioral Workflow vulnerability in the exchangeDeviceServices function …

medium
5.4
First published (updated )
CVE-2023-1383

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2025 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203