Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

Amazon
Amazonadded 2026/05/15 12:0 a.m.11 views

Low: aws-cfn-bootstrap

Issue Overview: No CVE associated with this advisory Affected Packages: aws-cfn-bootstrap Issue Correction: Run dnf update aws-cfn-bootstrap --releasever 2023.11.20260514 or dnf update --advisory ALAS2023-2026-1662 --releasever 2023.11.20260514 to update your system. More information on how to...

8.8CVSS6.8AI score0.48666EPSS
Exploits7
Amazon
Amazonadded 2025/12/08 12:0 a.m.10 views

Medium: aws-cfn-bootstrap

Issue Overview: Requests is a HTTP library. Due to a URL parsing issue, Requests releases prior to 2.32.4 may leak .netrc credentials to third parties for specific maliciously-crafted URLs. Users should upgrade to version 2.32.4 to receive a fix. For older versions of Requests, use of the .netrc...

5.3CVSS6.6AI score0.00846EPSS
Exploits1
Tenable Nessus
Tenable Nessusadded 2024/10/16 12:0 a.m.36 views

Amazon Linux 2 : aws-cfn-bootstrap (ALAS-2024-2654)

The version of aws-cfn-bootstrap installed on the remote host is prior to 2.0-31. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2024-2654 advisory. Requests is a HTTP library. Prior to 2.32.0, when making requests through a Requests Session, if the first request is made...

5.6CVSS6.5AI score0.0034EPSS
Exploits0References4
Amazon
Amazonadded 2024/10/14 12:0 a.m.4 views

Medium: aws-cfn-bootstrap

Issue Overview: Requests is a HTTP library. Prior to 2.32.0, when making requests through a Requests Session, if the first request is made with verify=False to disable cert verification, all subsequent requests to the same host will continue to ignore cert verification regardless of changes to th...

5.6CVSS5.7AI score0.0034EPSS
Exploits0
Tenable Nessus
Tenable Nessusadded 2024/10/14 12:0 a.m.23 views

Amazon Linux 2023 : aws-cfn-bootstrap (ALAS2023-2024-732)

It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2024-732 advisory. Requests is a HTTP library. Prior to 2.32.0, when making requests through a Requests Session, if the first request is made with verify=False to disable cert verification, all subsequent requests to the...

5.6CVSS6.3AI score0.0034EPSS
Exploits0References4
Amazon
Amazonadded 2017/09/14 12:0 a.m.34 views

Important: aws-cfn-bootstrap

Issue Overview: The default umask value is set to 022 to address a privilege escalation security vulnerability. Affected Packages: aws-cfn-bootstrap Issue Correction: Run yum update aws-cfn-bootstrap or yum update --advisory ALAS-2017-895 to update your system. 1. Run yum update aws-cfn-bootstrap...

7.3AI score
Exploits0
Tenable Nessus
Tenable Nessusadded 2017/09/01 12:0 a.m.19 views

Amazon Linux AMI : aws-cfn-bootstrap (ALAS-2017-886)

New optional parameter 'umask' introduced into cfn-hup.conf file in order to configure the cfn-hup daemon's umask. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Amazon Linux AMI Security Advisory ALAS-2017-886. include"compat.inc"; if...

5.4AI score
Exploits0References1
Rows per page
Query Builder