Amazon

153 tracked vulnerabilities.

CVE-2022-46174 MEDIUM
efs-utils <1.34.3 - Race Condition
Dec 28, 2022
CVSS 4.2
EPSS 0.00
CVE-2022-2582 MEDIUM
AWS S3 Crypto SDK - Info Disclosure
Dec 27, 2022
CVSS 4.3
EPSS 0.00
CVE-2022-4725 MEDIUM
Amazon Aws Software Development Kit < 2.59.1 - SSRF
Dec 27, 2022
CVSS 5.5
EPSS 0.00
CVE-2022-23511 HIGH
Amazon Cloudwatch Agent < 1.247355 - Privilege Escalation
Dec 12, 2022
CVSS 7.1
EPSS 0.00
CVE-2022-41917 MEDIUM
Amazon Opensearch < 1.3.7 - Information Disclosure
Nov 16, 2022
CVSS 4.3
EPSS 0.00
CVE-2022-41918 MEDIUM
Amazon Opensearch < 1.3.7 - Incorrect Authorization
Nov 15, 2022
CVSS 6.3
EPSS 0.00
CVE-2022-41906 HIGH
Amazon Opensearch Notifications < 2.2.1.0 - SSRF
Nov 11, 2022
CVSS 8.7
EPSS 0.00
CVE-2022-41828 HIGH
Amazon AWS Redshift JDBC Driver <2.1.0.8 - Code Injection
Sep 29, 2022
CVSS 8.1
EPSS 0.09
CVE-2022-39230 MEDIUM
Amazon Fhir-works-on-aws-authz-smart < 3.1.3 - Information Disclosure
Sep 23, 2022
CVSS 6.5
EPSS 0.00
CVE-2022-35980 HIGH
OpenSearch Security <2.1.0.0 - Info Disclosure
Aug 12, 2022
CVSS 7.5
EPSS 0.00
CVE-2022-31159 HIGH
AWS SDK for Java <1.12.261 - Path Traversal
Jul 15, 2022
CVSS 7.9
EPSS 0.00
CVE-2022-31115 HIGH
opensearch-ruby <2.0.1 - SSRF
Jun 30, 2022
CVSS 8.8
EPSS 0.00
CVE-2022-33915 HIGH
Amazon AWS Apache Log4j <log4j-cve-2021-44228-hotpatch-1.3.5 - Priv...
Jun 17, 2022
CVSS 7.0
EPSS 0.00
CVE-2022-29527 HIGH
Amazon Ssm Agent < 3.1.1208.0 - Race Condition
Apr 20, 2022
CVSS 7.0
EPSS 0.00
CVE-2022-0070 HIGH
Apache Log4j - Privilege Escalation
Apr 19, 2022
CVSS 8.8
EPSS 0.00
CVE-2021-3100 HIGH
Apache Log4j <log4j-cve-2021-44228-hotpatch-1.1-13 - Privilege Esca...
Apr 19, 2022
CVSS 8.8
EPSS 0.00
CVE-2022-25166 MEDIUM
Amazon Aws Client VPN - Information Disclosure
Apr 14, 2022
CVSS 5.0
EPSS 0.01
CVE-2022-25165 HIGH
Amazon Aws Client VPN - TOCTOU Race Condition
Apr 14, 2022
CVSS 7.0
EPSS 0.01
CVE-2022-24709 HIGH
@awsui/components-react <3.0.367 - Code Injection
Feb 24, 2022
CVSS 8.8
EPSS 0.00
CVE-2022-25809 CRITICAL
Amazon Echo Dot - RCE
Feb 24, 2022
CVSS 9.8
EPSS 0.07
CVE-2021-44833 CRITICAL
Amazon Aws Opensearch - Incorrect Default Permissions
Dec 12, 2021
CVSS 9.8
EPSS 0.00
CVE-2021-43811 HIGH
Sockeye <2.3.24 - Code Injection
Dec 08, 2021
CVSS 7.8
EPSS 0.09
CVE-2021-43638 HIGH
Amazon WorkSpaces <v1.0.1.1537 - RCE
Dec 07, 2021
CVSS 8.8
EPSS 0.00
CVE-2021-43637 HIGH
Amazon WorkSpaces <v1.0.1.1537 - Buffer Overflow
Dec 07, 2021
CVSS 8.8
EPSS 0.00
CVE-2021-40831 MEDIUM
AWS IoT Device SDK - Info Disclosure
Nov 23, 2021
CVSS 6.3
EPSS 0.00
Products
freertos 17 amazon_web_services_freertos 14 fire_os 13 opensearch 11 blink_xt2_sync_module_firmware 7 tough 7 payfort-php-sdk 5 data.all 5 firecracker 4 freertos-plus-tcp 4 amazon_web_services_internet_of_things_device_software_development_kit_v2 4 aws_software_development_kit 4 aws_cloud_development_kit 4 amazon_web_services_aws-c-io 3 opensearch_data_prepper 3 echo_dot_firmware 3 aws_client_vpn 2 workspaces 2 audible 2 aws_s3_crypto_sdk 2 log4jhotpatch 2 opensearch_security 2 amazon_web_services_redshift_java_database_connectivity_driver 2 kindle_touch 2 awslabs_sandbox_accounts_for_events 2 kindle_firmware 2 aws_encryption_sdk 2 kindle_for_pc 2 awsui\/components-react 1 aws-sigv4 1
Quick Filters
Critical CVEs With Exploits In CISA KEV