Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / Vendors / amazon

amazon

196 tracked vulnerabilities.

CVE-2021-30355 HIGH

Amazon Kindle <5.13.4 - Privilege Escalation

CVE-2021-30354 HIGH

Amazon Kindle <5.13.4 - Code Injection

CVE-2021-37436 MEDIUM

Amazon Echo Dot Firmware < 2021-07-02 - Unprotected User Data Exposure via Factory Reset Bypass

CVE-2021-31828 HIGH

Amazon Open Distro for Elasticsearch < 1.13.1.0 - Authenticated Server-Side Request Forgery via Alerting Plugin

CVE-2021-32020 CRITICAL

Amazon FreeRTOS < 10.4.3 - Heap-Based Buffer Overflow

CVE-2021-31572 CRITICAL

Amazon FreeRTOS < 10.4.3 - Integer Overflow in Stream Buffer

CVE-2021-31571 CRITICAL

Amazon FreeRTOS < 10.4.3 - Integer Overflow in Queue Creation

CVE-2020-36363 CRITICAL

Amazon CloudFront TLSv1.2_2019 - Use of Weak TLS Ciphers

CVE-2020-28472 HIGH

@aws-sdk/shared-ini-file-loader <1.0.0-rc.9 - Prototype Pollution

CVE-2020-8897 MEDIUM

AWS Encryption SDK <2.0.0 - Info Disclosure

CVE-2020-27174 HIGH

Amazon AWS Firecracker <0.21.3-0.22.1 - Memory Corruption

CVE-2020-8912 LOW

AWS S3 Crypto SDK for GoLang < 2.0 - Use of a Broken or Risky Cryptographic Algorithm via In-Band Key Negotiation

CVE-2020-8911 MEDIUM

AWS S3 Crypto SDK for GoLang < 2.0 - Padding Oracle Attack via AES-CBC Without MAC

CVE-2020-16843 MEDIUM

Firecracker 0.20.x-0.20.1 and 0.21.x-0.21.2 - Denial of Service via Network Stack Freeze

CVE-2020-15093 HIGH

tough < 0.7.1 - Cryptographic Signature Verification Bypass via Duplicate Signature

CVE-2019-14652 MEDIUM

Amazon AWS JavaScript S3 Explorer <2019-08-02 - XSS

CVE-2019-10777 CRITICAL

aws-lambda < 1.0.5 - OS Command Injection via config.FunctionName

CVE-2019-3984 CRITICAL

Blink XT2 Sync Module Firmware < 2.3.11 - Remote Code Execution via Update Script Retrieval

CVE-2019-3989 CRITICAL

Blink XT2 Sync Module Firmware < 2.13.11 - Remote Code Execution via Network Configuration Retrieval

CVE-2019-3988 HIGH

Blink XT2 Sync Module Firmware < 2.13.11 - Remote Code Execution via BSSID Parameter

CVE-2019-3987 HIGH

Blink XT2 Sync Module Firmware < 2.13.11 - Remote Code Execution via WiFi Configuration Key Parameter

CVE-2019-3986 HIGH

Blink XT2 Sync Module Firmware < 2.13.11 - Remote Code Execution via WiFi Configuration Encryption Parameter

CVE-2019-3985 HIGH

Blink XT2 Sync Module Firmware < 2.13.11 - Remote Code Execution via SSID Parameter

CVE-2019-3983 MEDIUM

Blink XT2 Sync Module Firmware < 2.13.11 - Remote Code Execution via UART

CVE-2019-18960 CRITICAL

Firecracker <0.19.0 - Buffer Overflow

Previous Page 6 of 8 Next

Products

freertos 17 amazon_web_services_freertos 14 fire_os 13 opensearch 11 tough 10 freertos-plus-tcp 9 blink_xt2_sync_module_firmware 7 Amazon Athena ODBC driver 6 athena_odbc 6 data.all 5 payfort-php-sdk 5 amazon_web_services_internet_of_things_device_software_development_kit_v2 4 aws_cloud_development_kit 4 aws_software_development_kit 4 firecracker 4 amazon_web_services_aws-c-io 3 aws-lc-sys 3 aws_libcrypto 3 echo_dot_firmware 3 opensearch_data_prepper 3 research_and_engineering_studio 3 tuftool 3 WorkSpaces Client 2 amazon_linux 2 amazon_web_services_redshift_java_database_connectivity_driver 2 audible 2 aws_client_vpn 2 aws_encryption_sdk 2 aws_s3_crypto_sdk 2 awslabs_sandbox_accounts_for_events 2

Quick Filters

Critical CVEs With Exploits In CISA KEV

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy