Lucene search
+L

181 matches found

NVD
NVD
added 2 days ago5 views

CVE-2026-15737

AWS Bedrock AgentCore Python SDK is an open-source Python library that provides client tools for building AI agents on the Amazon Bedrock AgentCore platform. Unintended logging of sensitive user content in the OpenTelemetry instrumentation in AWS Bedrock AgentCore Python SDK versions 1.4.8 and...

5.7CVSS0.00216EPSS
Exploits0References3
EUVD
EUVD
added 2 days ago8 views

EUVD-2026-44988

AWS Bedrock AgentCore Python SDK is an open-source Python library that provides client tools for building AI agents on the Amazon Bedrock AgentCore platform. Unintended logging of sensitive user content in the OpenTelemetry instrumentation in AWS Bedrock AgentCore Python SDK versions 1.4.8 and...

5.7CVSS6.1AI score0.00216EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2 days ago7 views

CVE-2026-15737

AWS Bedrock AgentCore Python SDK is an open-source Python library that provides client tools for building AI agents on the Amazon Bedrock AgentCore platform. Unintended logging of sensitive user content in the OpenTelemetry instrumentation in AWS Bedrock AgentCore Python SDK versions 1.4.8 and...

5.7CVSS6.1AI score0.00216EPSS
Exploits0References4Affected Software1
OSV
OSV
added 2 days ago4 views

CVE-2026-15737 Sensitive content disclosure via OpenTelemetry spans in AgentCore Python SDK

AWS Bedrock AgentCore Python SDK is an open-source Python library that provides client tools for building AI agents on the Amazon Bedrock AgentCore platform. Unintended logging of sensitive user content in the OpenTelemetry instrumentation in AWS Bedrock AgentCore Python SDK versions 1.4.8 and...

5.7CVSS6.1AI score0.00216EPSS
Exploits0References5
CVE
CVE
added 2 days ago12 views

CVE-2026-15737

CVE-2026-15737 affects the AWS Bedrock AgentCore Python SDK. Unintended logging of sensitive user content occurs in the OpenTelemetry instrumentation for SDK versions 1.4.8 and 1.5.0, where raw user prompts and complete agent responses were written into OpenTelemetry span attributes on every invo...

5.7CVSS6.1AI score0.00216EPSS
Exploits0References3
Chainguard
Chainguard
added 2026/06/23 8:16 a.m.12 views

CVE-2026-41178 vulnerabilities

Vulnerabilities for packages: authentik, prometheus, gotrue, crossplane-provider-aws-ec2-fips, newrelic-infrastructure-agent, crossplane-provider-aws-kms-fips, pinniped-fips, crossplane-provider-aws-imagebuilder-fips, stunnerd, percona-xtradb-cluster-operator, flux-helm-controller-fips,...

5.3CVSS5.1AI score0.00237EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/06/22 12:0 a.m.8 views

Amazon Linux 2 : amazon-cloudwatch-agent, --advisory ALAS2-2026-3389 (ALAS-2026-3389)

The version of amazon-cloudwatch-agent installed on the remote host is prior to 1.300067.1-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2026-3389 advisory. Parsing arbitrary HTML can consume excessive CPU time, possibly leading to denial of service...

10CVSS7.1AI score0.03153EPSS
Exploits2References16
Amazon
Amazon
added 2026/05/26 12:0 a.m.28 views

Important: amazon-cloudwatch-agent

Issue Overview: Arithmetic over induction variables in loops were not correctly checked for underflow or overflow in the Go compiler cmd/compile. As a result, the compiler would allow for invalid indexing to occur at runtime, potentially leading to memory corruption in programs compiled with...

9.8CVSS7.1AI score0.01163EPSS
Exploits1
OSV
OSV
added 2026/05/21 8:12 a.m.7 views

CLEANSTART-2026-MJ26242 Security fixes for CVE-2026-41602, ghsa-wf45-q9ch-q8gh applied in versions: 1.300066.1-r0

Multiple security vulnerabilities affect the amazon-cloudwatch-agent-fips package. These issues are resolved in later releases. See references for individual vulnerability details...

7.5CVSS5.8AI score0.01163EPSS
Exploits0References4
OSV
OSV
added 2026/05/20 5:15 a.m.9 views

CLEANSTART-2026-GA28186 Security fixes for CVE-2026-41602 applied in versions: 1.300066.1-r0

Security vulnerability affects the amazon-cloudwatch-agent package. This issue is resolved in later releases. See references for vulnerability details...

7.5CVSS5.8AI score0.01163EPSS
Exploits0References3
OSV
OSV
added 2026/05/18 1:31 p.m.5 views

CLEANSTART-2026-XQ84127 Security fixes for CVE-2025-47914, CVE-2025-58181, CVE-2026-29181, CVE-2026-33186, CVE-2026-33811, CVE-2026-33814, CVE-2026-39820, CVE-2026-39823, CVE-2026-39825, CVE-2026-39826, CVE-2026-39836, CVE-2026-42499, ghsa-f6x5-jh6r-wrfv, ghsa-j5w8-q4qc-rx2x, ghsa-mh2q-q3fh-2475, ghsa-p77j-4mvh-x3m3 applied in versions: 3.4.0-r0

Multiple security vulnerabilities affect the amazon-cloudwatch-agent-operator package. These issues are resolved in later releases. See references for individual vulnerability details...

9.1CVSS7.1AI score0.01557EPSS
Exploits2References29
OSV
OSV
added 2026/05/06 12:0 a.m.7 views

OPENSUSE-SU-2026:10699-1 amazon-cloudwatch-agent-1.300066.1-1.1 on GA media

These are all security issues fixed in the amazon-cloudwatch-agent-1.300066.1-1.1 package on the GA media of openSUSE Tumbleweed...

7.5CVSS5.8AI score0.01163EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/05/06 12:0 a.m.14 views

PT-2026-38516

These are all security issues fixed in the amazon-cloudwatch-agent-1.300066.1-1.1 package on the GA media of openSUSE Tumbleweed...

7.5CVSS5.8AI score0.01163EPSS
Exploits0References2
Wolfi
Wolfi
added 2026/04/25 1:49 p.m.8 views

GHSA-MH2Q-Q3FH-2475 vulnerabilities

Vulnerabilities for packages: k8ssandra-client, cadvisor, step-issuer, redpanda, argo-rollouts, net-kourier, crossplane-provider-aws-elasticache, cilium-cli, kubernetes-csi-driver-hostpath, vexctl, crossplane-provider-azure-storage, ko, crossplane-provider-aws-cloudwatchlogs, istio, litestream,...

5.3AI score
Exploits0
Wolfi
Wolfi
added 2026/04/25 1:49 p.m.10 views

CVE-2026-29181 vulnerabilities

Vulnerabilities for packages: k8ssandra-client, cadvisor, step-issuer, redpanda, argo-rollouts, net-kourier, crossplane-provider-aws-elasticache, cilium-cli, kubernetes-csi-driver-hostpath, vexctl, crossplane-provider-azure-storage, ko, crossplane-provider-aws-cloudwatchlogs, istio, litestream,...

7.5CVSS5.1AI score0.00435EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2026/04/14 12:0 a.m.11 views

Amazon Linux 2 : amazon-cloudwatch-agent, --advisory ALAS2-2026-3248 (ALAS-2026-3248)

"The version of amazon-cloudwatch-agent installed on the remote host is prior to 1.300064.2-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2026-3248 advisory. url.Parse insufficiently validated the host/authority component and accepted some invalid URLs...

9.1CVSS6AI score0.01557EPSS
Exploits1References10
Wolfi
Wolfi
added 2026/04/11 2:51 a.m.14 views

CVE-2026-32282 vulnerabilities

Vulnerabilities for packages: fscrypt, keda, ingress-nginx-controller, falco-no-driver, grafana, snyk-cli, libnvidia-container, flux, knative-operator, argo-cd, net-kourier, spire-server, kubernetes, telegraf, mattermost, fuse-overlayfs-snapshotter, cilium-cli, kubernetes-dashboard,...

6.4CVSS6.6AI score0.00292EPSS
Exploits0
Wolfi
Wolfi
added 2026/04/11 2:51 a.m.12 views

CVE-2026-32281 vulnerabilities

Vulnerabilities for packages: kbld, ingress-nginx-controller, kubernetes-dashboard-metrics-scraper, grpcurl, goreleaser, croc, knative-operator, mariadb-operator, argo-rollouts, delve, crossplane-provider-azure-storage, lvm-driver, vale, docker-cli-buildx, kind, portieris, syft, vendir,...

7.5CVSS7.1AI score0.00349EPSS
Exploits0
Chainguard
Chainguard
added 2026/04/11 2:18 a.m.15 views

CVE-2026-32283 vulnerabilities

Vulnerabilities for packages: prometheus, crossplane-provider-aws-ec2-fips, kube-bench, docker-credential-acr-env-fips, newrelic-infrastructure-agent, nri-couchbase-fips, wavefront-collector-for-kubernetes, crossplane-provider-aws-kms-fips, longhorn-backing-image-manager, chart-testing-fips,...

7.5CVSS7.2AI score0.00621EPSS
Exploits0
Chainguard
Chainguard
added 2026/03/30 7:17 p.m.7 views

CVE-2026-32287 vulnerabilities

Vulnerabilities for packages: crossplane-provider-aws-kms, crossplane-provider-aws-ec2-fips, crossplane-provider-aws-kinesis-fips, crossplane-provider-aws-rds-fips, crossplane-provider-aws-elasticache-fips, crossplane-provider-aws-kms-fips, crossplane-provider-aws-sqs, amazon-cloudwatch-agent-fip...

7.5CVSS6AI score0.00519EPSS
Exploits1
Rows per page
Query Builder