6 matches found
CVE-2025-14763 vulnerabilities
Vulnerabilities for packages: apache-nifi...
CVE-2025-14763 vulnerabilities
Vulnerabilities for packages: apache-nifi...
CVE-2025-14763
Missing cryptographic key commitment in the Amazon S3 Encryption Client for Java may allow a user with write access to the S3 bucket to introduce a new EDK that decrypts to different plaintext when the encrypted data key is stored in an "instruction file" instead of S3's metadata record. To...
CVE-2025-14763
creationtimestamp| type| source ---|---|--- 2025-12-17 20:38:24+00:00| seen| https://infosec.exchange/users/cR0w/statuses/115736831846545668 2026-02-26 04:17:45+00:00| seen| https://gist.github.com/aajisaka/4c2f7b9a8360b65fc9612b0a8657c0d0...
net.snowflake:snowflake-jdbc-thin (=4.0.0), org.apache.hadoop:hadoop-aws (=3.4.2) +6 more potentially affected by CVE-2025-14763 via software.amazon.encryption.s3:amazon-s3-encryption-client-java (>=3.1.1 <=3.5.0)
software.amazon.encryption.s3:amazon-s3-encryption-client-java MAVEN version =3.1.1, =2.7.0, =2.7.0, =2.7.0, =2.7.0, =2.7.0, =2.7.0, =2.7.2 Source cves: CVE-2025-14763 Source advisory: SNYK:JAVA-SOFTWAREAMAZONENCRYPTIONS3-14465279...
EUVD-2025-14763
Malicious code in bioql PyPI...