800 matches found
go-witness is Vulnerable to Improper Verification of AWS EC2 Identity Documents
Impact This vulnerability only affects users of the AWS attestor. Users of the AWS attestor could have unknowingly received a forged identity document. While this may seem unlikely, AWS recently issued a security bulletin about IMDS Instance Metadata Service impersonation.^1 There are multiple...
CVE-2025-62375 go-witness Improper Verification of AWS EC2 Identity Documents
go-witness and witness are Go modules for generating attestations. In go-witness versions 0.8.6 and earlier and witness versions 0.9.2 and earlier the AWS attestor improperly verifies AWS EC2 instance identity documents. Verification can incorrectly succeed when a signature is not present or is...
CVE-2025-62375
The CVE describes an improper verification in the AWS attestor used by go-witness and witness. In affected versions, the attestor can accept forged AWS EC2 instance identity documents when a signature is absent/empty or RSA verification fails, and it relies on a legacy global AWS certificate inst...
CVE-2025-62375
go-witness and witness are Go modules for generating attestations. In go-witness versions 0.8.6 and earlier and witness versions 0.9.2 and earlier the AWS attestor improperly verifies AWS EC2 instance identity documents. Verification can incorrectly succeed when a signature is not present or is...
EUVD-2020-0098
Malware in sbrugna...
EUVD-2013-6215
Malware in sbrugna...
EUVD-2017-9233
Malware in sbrugna...
EUVD-2012-6485
Malware in sbrugna...
EUVD-2012-3395
Malware in sbrugna...
EUVD-2017-8039
Malware in sbrugna...
EUVD-2012-0016
Malware in sbrugna...
EUVD-2021-26414
Malware in sbrugna...
EUVD-2012-5400
Malware in sbrugna...
EUVD-2012-0020
Malware in sbrugna...
EUVD-2022-5524
Malicious code in bioql PyPI...
EUVD-2022-5202
Malicious code in bioql PyPI...
EUVD-2022-4923
Malicious code in bioql PyPI...
EUVD-2024-16250
Malicious code in bioql PyPI...
EUVD-2024-38283
Malicious code in bioql PyPI...
EUVD-2022-4654
Malicious code in bioql PyPI...