8 matches found
CVE-2025-3048
After completing a build with AWS Serverless Application Model Command Line Interface SAM CLI which include symlinks, the content of those symlinks are copied to the cache of the local workspace as regular files or directories. As a result, a user who does not have access to those symlinks outsid...
better-lambda-deploy (>=0.0.4 <=0.6.9), localambda (=0.0.1) potentially affected by CVE-2025-3048 via aws-sam-cli (>=0.40.0 <=1.12.0)
aws-sam-cli PYPI version =0.40.0, =0.0.4, =0.6.9 - localambda =0.0.1 Source cves: CVE-2025-3048 Source advisory: OSV:GHSA-PP64-WJ43-XQCR...
AWS SAM CLI Path Traversal allows file copy to local cache
Summary The AWS Serverless Application Model Command Line Interface AWS SAM CLI is an open-source CLI tool that helps Lambda developers to build and develop Lambda applications locally on their computers using Docker. After completing a build with AWS SAM CLI which include symlinks, the content o...
CVE-2025-3048
After completing a build with AWS Serverless Application Model Command Line Interface SAM CLI which include symlinks, the content of those symlinks are copied to the cache of the local workspace as regular files or directories. As a result, a user who does not have access to those symlinks outsid...
CVE-2025-3048
creationtimestamp| type| source ---|---|--- 2025-03-31 15:31:11+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/9675 2025-03-31 16:40:47+00:00| seen| https://infosec.exchange/users/cR0w/statuses/114258034481176074 2025-03-31 16:40:47+00:00| seen|...
CVE-2025-3048
CVE-2025-3048 concerns AWS SAM CLI. When building with Docker (--use-container) and symlinks are included, the content of those symlinks can be copied into the SAM CLI cache as regular files/directories, potentially exposing privileged host files to users within the local workspace. This affects ...
CVE-2025-3048 Path Traversal in AWS SAM CLI allows file copy to local cache
After completing a build with AWS Serverless Application Model Command Line Interface SAM CLI which include symlinks, the content of those symlinks are copied to the cache of the local workspace as regular files or directories. As a result, a user who does not have access to those symlinks outsid...
CVE-2025-3048 Path Traversal in AWS SAM CLI allows file copy to local cache
After completing a build with AWS Serverless Application Model Command Line Interface SAM CLI which include symlinks, the content of those symlinks are copied to the cache of the local workspace as regular files or directories. As a result, a user who does not have access to those symlinks outsid...