Lucene search
K

46 matches found

Amazon
Amazon
added 2025/05/29 12:0 a.m.4 views

Important: kernel-livepatch-4.14.355-276.639

Issue Overview: In the Linux kernel, the following vulnerability has been resolved: vlan: enforce underlying device type CVE-2025-21920 Affected Packages: kernel-livepatch-4.14.355-276.639 Issue Correction: Please ensure you have live patching enabled. Run yum update...

7.1CVSS6.7AI score0.00202EPSS
Exploits0
Amazon
Amazon
added 2025/04/14 12:0 a.m.5 views

Medium: ecs-service-connect-agent

Issue Overview: Envoy is a cloud-native high-performance edge/middle/service proxy. Prior to 1.33.1, 1.32.4, 1.31.6, and 1.30.10, Envoy's extproc HTTP filter is at risk of crashing if a local reply is sent to the external server due to the filter's life time issue. A known situation is the failur...

7.5CVSS6.5AI score0.00406EPSS
Exploits0
Amazon
Amazon
added 2025/03/26 12:0 a.m.6 views

Important: python-jinja2

Issue Overview: Jinja is an extensible templating engine. Prior to 3.1.6, an oversight in how the Jinja sandboxed environment interacts with the |attr filter allows an attacker that controls the content of a template to execute arbitrary Python code. To exploit the vulnerability, an attacker need...

8.8CVSS8.6AI score0.00476EPSS
Exploits0
Amazon
Amazon
added 2025/03/06 12:0 a.m.4 views

Medium: openjpeg2

Issue Overview: openjpeg: heap buffer overflow in lib/openjp2/j2k.c CVE-2024-56827 Affected Packages: openjpeg2 Issue Correction: Run dnf update openjpeg2 --releasever 2023.6.20250303 or dnf update --advisory ALAS2023-2025-875 --releasever 2023.6.20250303 to update your system. More information o...

5.6CVSS7.9AI score0.0023EPSS
Exploits0
Amazon
Amazon
added 2025/03/06 12:0 a.m.21 views

Important: libxml2

Issue Overview: xmlXIncludeAddNode in xinclude.c in libxml2 before 2.11.0 has a use-after-free. CVE-2022-49043 Affected Packages: libxml2 Note: This advisory is applicable to Amazon Linux 2 AL2 Core repository. Visit this FAQ section for the difference between AL2 Core and AL2 Extras advisories...

8.1CVSS8.1AI score0.00257EPSS
Exploits0
Amazon
Amazon
added 2025/02/21 12:0 a.m.3 views

Medium: apache-commons-compress

Issue Overview: When reading a specially crafted ZIP archive, Compress can be made to allocate large amounts of memory that finally leads to an out of memory error even for very small inputs. This could be used to mount a denial of service attack against services that use Compress' zip package...

7.5CVSS6.7AI score0.12945EPSS
Exploits0
Amazon
Amazon
added 2024/12/19 12:0 a.m.13 views

Important: ruby

Issue Overview: An issue was discovered in the WEBrick toolkit through 1.8.1 for Ruby. It allows HTTP request smuggling by providing both a Content-Length header and a Transfer-Encoding header, e.g., "GET /admin HTTP/1.1\r\n" inside of a "POST /user HTTP/1.1\r\n" request. NOTE: the supplier's...

7.5AI score0.00393EPSS
Exploits0
Amazon
Amazon
added 2024/12/12 12:0 a.m.5 views

Medium: python-requests

Issue Overview: Requests is a HTTP library. Prior to 2.32.0, when making requests through a Requests Session, if the first request is made with verify=False to disable cert verification, all subsequent requests to the same host will continue to ignore cert verification regardless of changes to th...

5.6CVSS7.6AI score0.0034EPSS
Exploits0
Amazon
Amazon
added 2024/11/14 12:0 a.m.4 views

Medium: python-pip

Issue Overview: python-idna: potential DoS via resource consumption via specially crafted inputs to idna.encode CVE-2024-3651 Affected Packages: python-pip Issue Correction: Run dnf update python-pip --releasever 2023.6.20241111 or dnf update --advisory ALAS2023-2024-764 --releasever...

7.5CVSS6.9AI score0.01386EPSS
Exploits1
Amazon
Amazon
added 2024/11/14 12:0 a.m.4 views

Medium: python-idna

Issue Overview: python-idna: potential DoS via resource consumption via specially crafted inputs to idna.encode CVE-2024-3651 Affected Packages: python-idna Issue Correction: Run dnf update python-idna --releasever 2023.6.20241111 or dnf update --advisory ALAS2023-2024-763 --releasever...

7.5CVSS6.9AI score0.01386EPSS
Exploits1
Amazon
Amazon
added 2024/10/31 12:0 a.m.4 views

Important: ruby3.2

Issue Overview: An issue was discovered in the WEBrick toolkit through 1.8.1 for Ruby. It allows HTTP request smuggling by providing both a Content-Length header and a Transfer-Encoding header, e.g., "GET /admin HTTP/1.1\r\n" inside of a "POST /user HTTP/1.1\r\n" request. NOTE: the supplier's...

6.9AI score0.00393EPSS
Exploits0
Amazon
Amazon
added 2024/10/14 12:0 a.m.5 views

Medium: python-dns

Issue Overview: eventlet before 0.35.2, as used in dnspython before 2.6.0, allows remote attackers to interfere with DNS name resolution by quickly sending an invalid packet from the expected IP address and source port, aka a "TuDoor" attack. In other words, dnspython does not have the preferred...

7CVSS9.2AI score0.01857EPSS
Exploits1
Amazon
Amazon
added 2024/05/28 12:0 a.m.4 views

Low: bcc

Issue Overview: If kernel headers need to be extracted, bcc will attempt to load them from a temporary directory. An unprivileged attacker could use this to force bcc to load compromised linux headers. Linux distributions which provide kernel headers by default are not affected by default...

2.8CVSS6.6AI score0.00218EPSS
Exploits0
Amazon
Amazon
added 2024/03/05 12:0 a.m.4 views

Important: postgresql15

Issue Overview: Late privilege drop in REFRESH MATERIALIZED VIEW CONCURRENTLY in PostgreSQL allows an object creator to execute arbitrary SQL functions as the command issuer. The command intends to run SQL functions as the owner of the materialized view, enabling safe refresh of untrusted...

8CVSS7.8AI score0.01465EPSS
Exploits0
Amazon
Amazon
added 2024/02/19 12:0 a.m.5 views

Medium: openssl

Issue Overview: A flaw was found in OpenSSL. When the EVPPKEYpubliccheck function is called in RSA public keys, a computation is done to confirm that the RSA modulus, n, is composite. For valid RSA keys, n is a product of two or more large primes and this computation completes quickly. However, i...

5.9CVSS6.5AI score0.03174EPSS
Exploits0
Amazon
Amazon
added 2024/02/19 12:0 a.m.35 views

Medium: nss-softokn

Issue Overview: Multiple NSS NIST curves were susceptible to a side-channel attack known as "Minerva". This attack could potentially allow an attacker to recover the private key. This vulnerability affects Firefox 121. CVE-2023-6135 Affected Packages: nss-softokn Note: This advisory is applicable...

4.3CVSS5.7AI score0.00714EPSS
Exploits0
Amazon
Amazon
added 2024/02/19 12:0 a.m.7 views

Low: runc

Issue Overview: runc is a CLI tool for spawning and running containers on Linux according to the OCI specification. A bug was found in runc prior to version 1.1.2 where runc exec --cap created processes with non-empty inheritable Linux process capabilities, creating an atypical Linux environment...

7.8CVSS6.8AI score0.0039EPSS
Exploits0
Amazon
Amazon
added 2024/02/06 12:0 a.m.5 views

Medium: python-jinja2

Issue Overview: Jinja is an extensible templating engine. Special placeholders in the template allow writing code similar to Python syntax. It is possible to inject arbitrary HTML attributes into the rendered HTML template, potentially leading to Cross-Site Scripting XSS. The Jinja xmlattr filter...

6.1CVSS6.5AI score0.00892EPSS
Exploits0
Amazon
Amazon
added 2024/01/31 12:0 a.m.5 views

Important: runc

Issue Overview: AWS is aware of CVE-2024-21626, an issue affecting the runc component of several open source container management systems. Under certain conditions, an actor could leverage a specially crafted container or container configuration to access files or directories outside the...

8.6CVSS6.9AI score0.18087EPSS
Exploits18
Amazon
Amazon
added 2024/01/22 12:0 a.m.12 views

Medium: containerd

Issue Overview: A malicious HTTP sender can use chunk extensions to cause a receiver reading from a request or response body to read many more bytes from the network than are in the body. A malicious HTTP client can further exploit this to cause a server to automatically read a large amount of da...

7.5CVSS6.8AI score0.03796EPSS
Exploits0
Rows per page
Query Builder