Lucene search
K

800 matches found

Github Security Blog
Github Security Blog
added 2025/10/15 8:12 p.m.8 views

go-witness is Vulnerable to Improper Verification of AWS EC2 Identity Documents

Impact This vulnerability only affects users of the AWS attestor. Users of the AWS attestor could have unknowingly received a forged identity document. While this may seem unlikely, AWS recently issued a security bulletin about IMDS Instance Metadata Service impersonation.^1 There are multiple...

6.9CVSS6.9AI score0.00186EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2025/10/15 7:23 p.m.10 views

CVE-2025-62375 go-witness Improper Verification of AWS EC2 Identity Documents

go-witness and witness are Go modules for generating attestations. In go-witness versions 0.8.6 and earlier and witness versions 0.9.2 and earlier the AWS attestor improperly verifies AWS EC2 instance identity documents. Verification can incorrectly succeed when a signature is not present or is...

6.9CVSS0.00186EPSS
Exploits0References2
CVE
CVE
added 2025/10/15 7:23 p.m.17 views

CVE-2025-62375

The CVE describes an improper verification in the AWS attestor used by go-witness and witness. In affected versions, the attestor can accept forged AWS EC2 instance identity documents when a signature is absent/empty or RSA verification fails, and it relies on a legacy global AWS certificate inst...

6.9CVSS6.2AI score0.00186EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2025/10/15 7:23 p.m.5 views

CVE-2025-62375

go-witness and witness are Go modules for generating attestations. In go-witness versions 0.8.6 and earlier and witness versions 0.9.2 and earlier the AWS attestor improperly verifies AWS EC2 instance identity documents. Verification can incorrectly succeed when a signature is not present or is...

6.9CVSS5.4AI score0.00186EPSS
Exploits0
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2020-0098

Malware in sbrugna...

5.5CVSS5.3AI score0.00705EPSS
Exploits0References15
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2013-6215

Malware in sbrugna...

5.8CVSS6AI score0.02239EPSS
Exploits2References12
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2017-9233

Malware in sbrugna...

7.2CVSS7AI score0.01212EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.8 views

EUVD-2012-6485

Malware in sbrugna...

9CVSS8.7AI score0.02049EPSS
Exploits0References8
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2012-3395

Malware in sbrugna...

2.1CVSS6.4AI score0.00353EPSS
Exploits0References7
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2017-8039

Malware in sbrugna...

5.3CVSS5.5AI score0.00689EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2012-0016

Malware in sbrugna...

3.5CVSS6AI score0.02038EPSS
Exploits0References20
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2021-26414

Malware in sbrugna...

8.8CVSS8.8AI score0.00697EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2012-5400

Malware in sbrugna...

2.1CVSS6.1AI score0.00341EPSS
Exploits0References8
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2012-0020

Malware in sbrugna...

4.3CVSS6AI score0.02626EPSS
Exploits1References15
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2022-5524

Malicious code in bioql PyPI...

5.5CVSS5.7AI score0.00337EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2022-5202

Malicious code in bioql PyPI...

4.3CVSS5.1AI score0.00647EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-4923

Malicious code in bioql PyPI...

6.8CVSS5.9AI score0.00694EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-16250

Malicious code in bioql PyPI...

9.9CVSS9.2AI score0.00813EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2024-38283

Malicious code in bioql PyPI...

5.3CVSS6.6AI score0.00291EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2022-4654

Malicious code in bioql PyPI...

6CVSS6.3AI score0.01647EPSS
Exploits1References10
Rows per page
Query Builder