Lucene search
K

4 matches found

vulnersOsv
vulnersOsv
added 2026/01/08 9:52 p.m.4 views

@0xflick/jest-dynamodb (=4.0.1-pre.2), @42technologies/secretstore-aws (>=1.0.1 <=1.0.2) +1495 more potentially affected by unknown CVE via @smithy/config-resolver (>=1.1.0 <=3.0.13)

@smithy/config-resolver NPM version =1.1.0, =1.0.1, =1.0.0, =1.0.1, =0.3.2, =0.3.2, =0.0.1, =0.10.2, =0.1.0, =0.5.0, =2.1.25, =2.3.0, =9.1.6, =2.2.2, =3.1.21 and more Source cves: unknown CVE Source advisory: OSV:GHSA-6475-R3VJ-M8VF...

5.7AI score
Exploits0
OSV
OSV
added 2026/01/08 9:52 p.m.64 views

GHSA-6475-R3VJ-M8VF AWS SDK for JavaScript v3 adopted defense in depth enhancement for region parameter value

CVSSv3.1 Rating: 3.7 LOW Summary This notification is related to the use of specific values for the region input field when calling AWS services. An actor with access to the environment in which the SDK is used could set the region input field to an invalid value. A defense-in-depth enhancement h...

3.7CVSS6.6AI score
Exploits0References4
Github Security Blog
Github Security Blog
added 2026/01/08 9:52 p.m.61 views

AWS SDK for JavaScript v3 adopted defense in depth enhancement for region parameter value

CVSSv3.1 Rating: 3.7 LOW Summary This notification is related to the use of specific values for the region input field when calling AWS services. An actor with access to the environment in which the SDK is used could set the region input field to an invalid value. A defense-in-depth enhancement h...

6.7AI score
Exploits0References4Affected Software1
Positive Technologies
Positive Technologies
added 2026/01/08 12:0 a.m.8 views

PT-2026-3409

CVSSv3.1 Rating: 3.7 LOW Summary This notification is related to the use of specific values for the region input field when calling AWS services. An actor with access to the environment in which the SDK is used could set the region input field to an invalid value. A defense-in-depth enhancement h...

3.7CVSS6.7AI score
Exploits0References5
Rows per page
Query Builder