48 matches found
GHSA-FC67-C4HG-Q653 Amazon ECS Container Agent (Windows) is vulnerable to Information Disclosure
Summary Amazon Elastic Container Service Amazon ECS is a fully managed container orchestration service that enables customers to deploy, manage, and scale containerized applications. An issue exists where, under certain circumstances, improper input validation in the FSx Windows File Server volum...
CVE-2026-7461
Improper neutralization of inputs used in an OS command in the FSx Windows File Server volume mounting component in Amazon ECS Agent on Windows before version 1.103.0 might allow a remote authenticated threat actor to execute shell commands with SYSTEM privileges on the underlying host via a...
EUVD-2026-26412
Improper neutralization of inputs used in an OS command in the FSx Windows File Server volume mounting component in Amazon ECS Agent on Windows before version 1.103.0 might allow a remote authenticated threat actor to execute shell commands with SYSTEM privileges on the underlying host via a...
PT-2026-36165
Name of the Vulnerable Software and Affected Versions Amazon ECS Agent on Windows versions prior to 1.103.0 Description Improper neutralization of inputs used in an OS command within the FSx Windows File Server volume mounting component allows a remote authenticated threat actor to execute shell...
Amazon ECS Container Agent 操作系统命令注入漏洞
Amazon ECS Container Agent is an open-source elastic container service agent software developed by Amazon Web Services. Versions of Amazon ECS Container Agent prior to 1.103.0 contained an operating system command injection vulnerability. This vulnerability stems from improper handling of OS...
Amazon Linux 2 : ecs-init, --advisory ALAS2ECS-2025-088 (ALASECS-2025-088)
The version of ecs-init installed on the remote host is prior to 1.101.1-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2ECS-2025-088 advisory. crypto/x509: excluded subdomain constraint does not restrict wildcard SANs An excluded subdomain constraint in a...
CVE-2025-53710
Due to a product misconfiguration in certain deployment types, it was possible from different pods in the same namespace to communicate with each other. This issue resulted in bypass of access control due to the presence of a vulnerable endpoint in Foundry Container Service that executed...
CVE-2025-53710 Network boundaries not respected in certain Foundry namespaces.
Due to a product misconfiguration in certain deployment types, it was possible from different pods in the same namespace to communicate with each other. This issue resulted in bypass of access control due to the presence of a vulnerable endpoint in Foundry Container Service that executed...
PT-2025-52350
Name of the Vulnerable Software and Affected Versions Foundry Container Service affected versions not specified Description A product misconfiguration in certain deployment types allowed communication between different pods within the same namespace. This resulted in a bypass of access control du...
Palantir Foundry Container Service 安全漏洞
Palantir Foundry Container Service is a hosted container runtime environment from Palantir, Inc. in the United States. A security vulnerability exists in Palantir Foundry Container Service that stems from a product misconfiguration that could lead to bypassing access control...
Compromised IAM Credentials Power a Large AWS Crypto Mining Campaign
An ongoing campaign has been observed targeting Amazon Web Services AWS customers using compromised Identity and Access Management IAM credentials to enable cryptocurrency mining. The activity, first detected by Amazon's GuardDuty managed threat detection service and its automated security...
ColumnPack:ColumnPack-plugin (=1.0.3), CustomHistory:CustomHistory (>=1.1 <=1.3) +1884 more potentially affected by CVE-2025-67635 via org.jenkins-ci.main:cli (>=1.396 <=2.528.2)
org.jenkins-ci.main:cli MAVEN version =1.396, =1.1, =0.0.1, =1.0, =55.v51410e712e0c, =1.0, =0.0.1, =0.1.0, =1.0, =0.9, =1.3, =1.23 and more Source cves: CVE-2025-67635 Source advisory: OSV:GHSA-9P56-P6MW-W8QC...
EUVD-2018-7626
Malware in sbrugna...
EUVD-2023-0392
Malicious code in bioql PyPI...
Nokia CloudBand Infrastructure Software和Nokia Container Service 安全漏洞
Nokia CloudBand Infrastructure Software and Nokia Container Service are both products of the Finnish company Nokia.Nokia CloudBand Infrastructure Software is a platform that supports the virtualization of network functions. Nokia Container Service is a container management service. A security...
Nokia CloudBand Infrastructure Software和Nokia Container Service 安全漏洞
Nokia CloudBand Infrastructure Software and Nokia Container Service are both products of the Finnish company Nokia.Nokia CloudBand Infrastructure Software is a platform that supports the virtualization of network functions. Nokia Container Service is a container management service. A security...
CVE-2025-9039
We identified an issue in the Amazon ECS agent where, under certain conditions, an introspection server could be accessed off-host by another instance if the instances are in the same security group or if their security groups allow incoming connections that include the port where the server is...
Information Disclosure in Amazon ECS Container Agent
Summary Amazon Elastic Container Service Amazon ECS is a fully managed container orchestration service that enables customers to deploy, manage, and scale containerized applications. Amazon ECS container agent provides an introspection API that provides information about the overall state of the...
CVE-2025-9039
We identified an issue in the Amazon ECS agent where, under certain conditions, an introspection server could be accessed off-host by another instance if the instances are in the same security group or if their security groups allow incoming connections that include the port where the server is...
CVE-2025-9039
We identified an issue in the Amazon ECS agent where, under certain conditions, an introspection server could be accessed off-host by another instance if the instances are in the same security group or if their security groups allow incoming connections that include the port where the server is...