7 matches found
Amazon AppStream 2.0 < 1.1.1332 MITM
The version of Amazon AppStream 2.0 installed on the host is vulnerable to a man-in-the-middle vulnerability, allowing an attacker to access remote sessions. Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number. %NASLMINLEVEL...
CVE-2025-0500
An issue in the native clients for Amazon WorkSpaces when running Amazon DCV protocol, Amazon AppStream 2.0, and Amazon DCV Clients may allow an attacker to access remote sessions via man-in-the-middle...
Amazon DCV Client <= 2023.1.6203 MITM
The version of Amazon DCV Client installed on the host is vulnerable to a man-in-the-middle vulnerability, allowing an attacker to access remote sessions. Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number. %NASLMINLEVEL...
Amazon DCV Client <= 2023.1.8993 MITM
The version of Amazon DCV Client installed on the host is vulnerable to a man-in-the-middle vulnerability, allowing an attacker to access remote sessions. Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number. %NASLMINLEVEL...
Amazon WorkSpaces < 5.21.0 MITM
The version of Amazon WorkSpaces installed on the host is vulnerable to a man-in-the-middle vulnerability, allowing an attacker to access remote sessions. Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number. %NASLMINLEVEL...
CVE-2025-0500
creationtimestamp| type| source ---|---|--- 2025-01-15 19:16:12+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lfsi3evqzb2h 2025-01-15 19:53:12+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lfsk5jn72q2k 2025-01-15 20:59:21+00:00| seen|...
CVE-2025-0500
CVE-2025-0500 describes a man-in-the-middle vulnerability in the native clients for Amazon WorkSpaces (DCV), Amazon AppStream 2.0, and Amazon DCV clients that could allow an attacker to access remote sessions. Connected sources enumerate concrete vulnerable components/versions: Amazon AppStream 2...