CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

5 matches found

OSV•added 2025/05/22 3:16 p.m.•2 views

CVE-2025-45471

Insecure permissions in measure-cold-start v1.4.1 allows attackers to escalate privileges and compromise the customer cloud account...

8.8CVSS5.8AI score

Exploits0References2

Cvelist•added 2025/05/22 12:0 a.m.•5 views

CVE-2025-45471

Insecure permissions in measure-cold-start v1.4.1 allows attackers to escalate privileges and compromise the customer cloud account...

0.0028EPSS

Exploits1References2

Positive Technologies•added 2025/05/22 12:0 a.m.•2 views

PT-2025-22495 · Unknown · Measure-Cold-Start

Name of the Vulnerable Software and Affected Versions: measure-cold-start version 1.4.1 Description: The issue is related to insecure permissions, which can be exploited by attackers to escalate privileges and compromise the customer cloud account. Recommendations: For measure-cold-start version...

8.8CVSS7AI score0.0028EPSS

Exploits1References4

CNNVD•added 2025/05/22 12:0 a.m.•1 views

SAR-measure-cold-start 安全漏洞

SAR-measure-cold-start is an AWS Step Functions state machine open-sourced by Lumigo that helps measure the initialization time of Lambda functions. A security vulnerability exists in SAR-measure-cold-start v1.4.1, which stems from improper permissions and could lead to elevation of privilege and...

8.8CVSS6.9AI score0.0028EPSS

Exploits1References2