Amazon

152 tracked vulnerabilities.

CVE-2026-1386 MEDIUM
Firecracker <1.13.2-1.14.1 - Privilege Escalation
Jan 23, 2026
CVSS 6.0
EPSS 0.00
CVE-2025-14503 HIGH
Harmonix on AWS <0.4.2 - Privilege Escalation
Dec 15, 2025
CVSS 7.2
EPSS 0.00
CVE-2025-9624 HIGH
OpenSearch <3.3.0 - DoS
Nov 25, 2025
CVSS 7.5
EPSS 0.00
CVE-2025-62371 HIGH
Amazon Opensearch Data Prepper - Improper Certificate Validation
Oct 15, 2025
CVSS 7.4
EPSS 0.00
CVE-2025-11618 MEDIUM
Amazon Freertos-plus-tcp < 4.3.4 - NULL Pointer Dereference
Oct 10, 2025
CVSS 4.3
EPSS 0.00
CVE-2025-11617 MEDIUM
Amazon Freertos-plus-tcp < 4.3.4 - Buffer Over-read
Oct 10, 2025
CVSS 5.4
EPSS 0.00
CVE-2025-11616 MEDIUM
Amazon Freertos-plus-tcp < 4.3.4 - Buffer Over-read
Oct 10, 2025
CVSS 5.4
EPSS 0.00
CVE-2025-2888 MEDIUM
Tough <0.20.0 - Info Disclosure
Mar 27, 2025
CVSS 4.5
EPSS 0.00
CVE-2025-2887 MEDIUM
Tough <0.20.0 - Info Disclosure
Mar 27, 2025
CVSS 4.5
EPSS 0.00
CVE-2025-2886 MEDIUM
Tough <0.20.0 - Info Disclosure
Mar 27, 2025
CVSS 4.5
EPSS 0.00
CVE-2025-2885 MEDIUM
Tough <0.20.0 - Info Disclosure
Mar 27, 2025
CVSS 4.5
EPSS 0.00
CVE-2025-2598 MEDIUM
AWS CDK CLI - Info Disclosure
Mar 21, 2025
CVSS 5.5
EPSS 0.00
CVE-2025-23206 HIGH
Amazon Aws Cloud Development Kit - Signature Verification Bypass
Jan 17, 2025
CVSS 8.1
EPSS 0.00
CVE-2024-12746 HIGH
Amazon Redshift Odbc Driver - SQL Injection
Dec 24, 2024
CVSS 8.0
EPSS 0.00
CVE-2024-12745 HIGH
Amazon Redshift Connector < 2.1.5 - SQL Injection
Dec 24, 2024
CVSS 8.0
EPSS 0.01
CVE-2024-12744 HIGH
Amazon Web Services Redshift Java Dat... - SQL Injection
Dec 24, 2024
CVSS 8.0
EPSS 0.01
CVE-2024-55886 MEDIUM
Amazon Opensearch Data Prepper < 2.10.2 - Authentication Bypass
Dec 12, 2024
CVSS 6.9
EPSS 0.00
CVE-2024-52314 MEDIUM
data.all - Info Disclosure
Nov 09, 2024
CVSS 4.9
EPSS 0.00
CVE-2024-52313 MEDIUM
data.all - Info Disclosure
Nov 09, 2024
CVSS 4.3
EPSS 0.00
CVE-2024-52312 MEDIUM
Data.all - Privilege Escalation
Nov 09, 2024
CVSS 5.4
EPSS 0.00
CVE-2024-52311 MEDIUM
Data All - Auth Bypass
Nov 09, 2024
CVSS 6.3
EPSS 0.00
CVE-2024-10953 MEDIUM
Amazon Data.all < 2.6.1 - Incorrect Authorization
Nov 09, 2024
CVSS 4.3
EPSS 0.00
CVE-2024-45037 MEDIUM
AWS CDK - Info Disclosure
Aug 27, 2024
CVSS 6.4
EPSS 0.01
CVE-2024-6387 HIGH
OpenSSH - DoS
Jul 01, 2024
CVSS 8.1
EPSS 0.32
CVE-2024-38373 CRITICAL
FreeRTOS-Plus-TCP <4.1.0 - Buffer Overflow
Jun 24, 2024
CVSS 9.6
EPSS 0.01
Products
freertos 17 amazon_web_services_freertos 14 fire_os 13 opensearch 11 blink_xt2_sync_module_firmware 7 tough 7 payfort-php-sdk 5 data.all 5 aws_cloud_development_kit 4 amazon_web_services_internet_of_things_device_software_development_kit_v2 4 freertos-plus-tcp 4 aws_software_development_kit 4 firecracker 4 opensearch_data_prepper 3 echo_dot_firmware 3 amazon_web_services_aws-c-io 3 aws_client_vpn 2 workspaces 2 opensearch_security 2 log4jhotpatch 2 kindle_touch 2 aws_s3_crypto_sdk 2 amazon_web_services_redshift_java_database_connectivity_driver 2 awslabs_sandbox_accounts_for_events 2 audible 2 kindle_firmware 2 aws_encryption_sdk 2 kindle_for_pc 2 aws_workspaces 1 awsui\/components-react 1
Quick Filters
Critical CVEs With Exploits In CISA KEV