4 matches found
GHSA-72C7-4G63-HPW5 go-witness is Vulnerable to Improper Verification of AWS EC2 Identity Documents
Impact This vulnerability only affects users of the AWS attestor. Users of the AWS attestor could have unknowingly received a forged identity document. While this may seem unlikely, AWS recently issued a security bulletin about IMDS Instance Metadata Service impersonation.^1 There are multiple...
EUVD-2025-34679
go-witness is Vulnerable to Improper Verification of AWS EC2 Identity Documents...
MAL-2025-2765 Malicious code in identitydocumentserv-multipart-paypal (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 12bb417a686521f10c52162e16092d476b65d6b7679c76facfaa4655d2583908 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
CVE-2022-20259
In Telephony, there is a possible leak of ICCID and EID due to a missing permission check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-221431393...