66 matches found
Amazon Linux 2 : amazon-cloudwatch-agent (ALAS-2025-2851)
The version of amazon-cloudwatch-agent installed on the remote host is prior to 1.300054.1-2. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2025-2851 advisory. The net/http package accepted data in the chunked transfer encoding containing an invalid chunk-size...
CVE-2025-22871 vulnerabilities
Vulnerabilities for packages: terraform-provider-pagerduty, kubernetes-dashboard-metrics-scraper, cargobump, q, terraform-provider-kubernetes, swagger, cloudnative-pg, controller-gen, kapp-controller, metallb, fq, gosu, nri-nagios, opencost, jitsucom-jitsu, runc, litestream, gobuster, kaniko,...
GHSA-G9PC-8G42-G6VQ vulnerabilities
Vulnerabilities for packages: terraform-provider-pagerduty, kubernetes-dashboard-metrics-scraper, cargobump, q, terraform-provider-kubernetes, swagger, cloudnative-pg, controller-gen, kapp-controller, metallb, fq, gosu, nri-nagios, opencost, jitsucom-jitsu, runc, litestream, gobuster, kaniko,...
CVE-2025-22871 vulnerabilities
Vulnerabilities for packages: helm-docs, kubernetes-csi-node-driver-registrar-fips, splunk-otel-collector, crossplane-provider-azure-sql, envoy-gateway-fips, opentofu, apm-server-fips, consul, docker-cli, kubernetes-dashboard-web, terraform-provider-random, tempo-fips, bazelisk,...
CVE-2025-30204 vulnerabilities
Vulnerabilities for packages: zarf, loki, flux-kustomize-controller, grafana-agent-operator, kubernetes, policy-controller, openfga, rekor, opentofu, kargo, flux-image-automation-controller, crossplane-provider-azure-authorization, eksctl, thanos, rancher, chezmoi, falcoctl, terraform,...
GHSA-MH63-6H87-95CP vulnerabilities
Vulnerabilities for packages: step-ca, thanos, op-geth, chezmoi, opentofu-fips, splunk-otel-collector, cloud-provider-azure, crossplane-provider-azure-sql, grafana-mimir, opentofu, restic-fips, scorecard, cert-manager-fips, traefik-fips, cilium-fips, consul, terraform-fips,...
Amazon Linux 2 : amazon-cloudwatch-agent (ALAS-2025-2779)
The version of amazon-cloudwatch-agent installed on the remote host is prior to 1.300052.1-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2025-2779 advisory. Calling any of the Parse functions on Go source code which contains deeply nested literals can cause ...
Amazon Linux 2 : amazon-cloudwatch-agent (ALAS-2024-2630)
The version of amazon-cloudwatch-agent installed on the remote host is prior to 1.300044.0-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2024-2630 advisory. Azure Identity Libraries and Microsoft Authentication Library Elevation of Privilege Vulnerability...
Important: amazon-cloudwatch-agent
Issue Overview: Azure Identity Libraries and Microsoft Authentication Library Elevation of Privilege Vulnerability CVE-2024-35255 The OpenTelemetry Collector offers a vendor-agnostic implementation on how to receive, process and export telemetry data. An unsafe decompression vulnerability allows...
Amazon Linux 2 : amazon-cloudwatch-agent (ALAS-2024-2550)
The version of amazon-cloudwatch-agent installed on the remote host is prior to 1.300039.0-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2024-2550 advisory. An attacker may cause an HTTP/2 endpoint to read arbitrary amounts of header data by sending an...
Medium: amazon-cloudwatch-agent
Issue Overview: An attacker may cause an HTTP/2 endpoint to read arbitrary amounts of header data by sending an excessive number of CONTINUATION frames. Maintaining HPACK state requires parsing and processing all HEADERS and CONTINUATION frames on a connection. When a request's headers exceed...
Medium: amazon-cloudwatch-agent
Issue Overview: An attacker may cause an HTTP/2 endpoint to read arbitrary amounts of header data by sending an excessive number of CONTINUATION frames. Maintaining HPACK state requires parsing and processing all HEADERS and CONTINUATION frames on a connection. When a request's headers exceed...
Medium: amazon-cloudwatch-agent
Issue Overview: An attacker may cause an HTTP/2 endpoint to read arbitrary amounts of header data by sending an excessive number of CONTINUATION frames. Maintaining HPACK state requires parsing and processing all HEADERS and CONTINUATION frames on a connection. When a request's headers exceed...
Amazon Linux 2 : amazon-cloudwatch-agent (ALAS-2024-2424)
The version of amazon-cloudwatch-agent installed on the remote host is prior to 1.300032.3-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2024-2424 advisory. 2024-02-29: CVE-2023-47108 was added to this advisory. The HTTP/2 protocol allows a denial of service...
Amazon Linux 2023 : amazon-cloudwatch-agent (ALAS2023-2024-498)
It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2024-498 advisory. 2024-02-29: CVE-2023-47108 was added to this advisory. The HTTP/2 protocol allows a denial of service server resource consumption because request cancellation can reset many streams quickly, as...
Important: amazon-cloudwatch-agent
Issue Overview: The HTTP/2 protocol allows a denial of service server resource consumption because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023. CVE-2023-39325 A malicious HTTP sender can use chunk extensions to cause a receiver...
Medium: amazon-cloudwatch-agent
Issue Overview: 2023-10-11: The severity level was changed from Important to Medium. Extremely large RSA keys in certificate chains can cause a client/server to expend significant CPU time verifying signatures. With fix, the size of RSA keys transmitted during handshakes is restricted to = 8192...
Amazon Linux 2023 : amazon-cloudwatch-agent (ALAS2023-2023-307)
It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2023-307 advisory. 2023-10-11: The severity level was changed from Important to Medium. Extremely large RSA keys in certificate chains can cause a client/server to expend significant CPU time verifying signatures. With fi...
Amazon Linux 2 : amazon-cloudwatch-agent (ALAS-2023-2209)
The version of amazon-cloudwatch-agent installed on the remote host is prior to 1.300026.2-1. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2023-2209 advisory. 2023-10-11: The severity level was changed from Important to Medium. Extremely large RSA keys in certificate...
Medium: amazon-cloudwatch-agent
Issue Overview: 2023-10-11: The severity level was changed from Important to Medium. Extremely large RSA keys in certificate chains can cause a client/server to expend significant CPU time verifying signatures. With fix, the size of RSA keys transmitted during handshakes is restricted to = 8192...