CVE-2021-44833

CRITICAL

Amazon AWS OpenSearch CLI 1.0.0 - Incorrect Default Permissions

Title source: llm

The CLI 1.0.0 for Amazon AWS OpenSearch has weak permissions for the configuration file.

Core 2

Core References

Exploit, Third Party Advisory x_refsource_misc

Patch, Third Party Advisory x_refsource_misc

CVSS v3 9.8

EPSS 0.0029

EPSS Percentile 51.9%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE

CWE-276

Status published

Products (1)

amazon/aws_opensearch 1.0.0

Published Dec 12, 2021

Tracked Since Feb 18, 2026