Lucene search
K
AmazonMost viewed

8850 matches found

Amazon
Amazon
•added 2026/02/19 12:0 a.m.•9 views

Important: kernel

Issue Overview: In the Linux kernel, the following vulnerability has been resolved: RDMA/restrack: Release MR restrack when delete CVE-2022-50822 In the Linux kernel, the following vulnerability has been resolved: netfilter: nftables: reject duplicate device on updates CVE-2025-38678 In the Linux...

7.8CVSS5.6AI score0.00544EPSS
Exploits7
Amazon
Amazon
•added 2026/02/18 12:0 a.m.•9 views

Important: python3.12-wheel

Issue Overview: wheel is a command line tool for manipulating Python wheel files, as defined in PEP 427. In versions 0.46.1 and below, the unpack function is vulnerable to file permission modification through mishandling of file permissions after extraction. The logic blindly trusts the filename...

7.1CVSS6.5AI score0.00311EPSS
Exploits2
Amazon
Amazon
•added 2026/02/18 12:0 a.m.•9 views

Important: nsight-systems-2025.5.2

Issue Overview: NVIDIA Nsight Systems contains a vulnerability in the gfxhotspot recipe, where an attacker could cause an OS command injection by supplying a malicious string to the processnsysrepcli.py script if the script is invoked manually. A successful exploit of this vulnerability might lea...

7.3CVSS5.7AI score0.01185EPSS
Exploits0
Amazon
Amazon
•added 2026/02/18 12:0 a.m.•9 views

Medium: python3.12

Issue Overview: When folding a long comment in an email header containing exclusively unfoldable characters, the parenthesis would not be preserved. This could be used for injecting headers into email messages where addresses are user-controlled and not sanitized. CVE-2025-11468 User-controlled...

6CVSS5.6AI score0.0056EPSS
Exploits0
Amazon
Amazon
•added 2026/02/18 12:0 a.m.•9 views

Important: kmod-nvidia-latest-dkms

Issue Overview: NVIDIA Display Driver for Linux contains a vulnerability in the NVIDIA kernel module where an attacker could cause an integer overflow or wraparound. A successful exploit of this vulnerability might lead to code execution, escalation of privileges, data tampering, denial of servic...

7.8CVSS5.7AI score0.00186EPSS
Exploits0
Amazon
Amazon
•added 2026/02/18 12:0 a.m.•9 views

Important: nvidia-kmod-common

Issue Overview: NVIDIA Display Driver for Linux contains a vulnerability in the NVIDIA kernel module where an attacker could cause an integer overflow or wraparound. A successful exploit of this vulnerability might lead to code execution, escalation of privileges, data tampering, denial of servic...

7.8CVSS5.7AI score0.00186EPSS
Exploits0
Amazon
Amazon
•added 2026/02/18 12:0 a.m.•9 views

Medium: runc

Issue Overview: net/http: memory exhaustion in Request.ParseForm CVE-2025-61726 archive/zip: denial of service when parsing arbitrary ZIP archives CVE-2025-61728 crypto/tls: handshake messages may be processed at the incorrect encryption level CVE-2025-61730 crypto/tls: Config.Clone copies...

10CVSS8.3AI score0.01945EPSS
Exploits2
Amazon
Amazon
•added 2026/02/05 12:0 a.m.•9 views

Important: ImageMagick

Issue Overview: ImageMagick is free and open-source software used for editing and manipulating digital images. Versions prior to 7.1.2-13 have a stack overflow via infinite recursion in MSL Magick Scripting Language command when writing to MSL format. Version 7.1.2-13 fixes the issue...

9.8CVSS5.8AI score0.00609EPSS
Exploits3
Amazon
Amazon
•added 2026/02/05 12:0 a.m.•9 views

Important: python3-urllib3

Issue Overview: urllib3 is an HTTP client library for Python. urllib3's streaming API is designed for the efficient handling of large HTTP responses by reading the content in chunks, rather than loading the entire response body into memory at once. urllib3 can perform decoding or decompression...

8.9CVSS5.5AI score0.02667EPSS
Exploits0
Amazon
Amazon
•added 2026/02/05 12:0 a.m.•9 views

Important: kernel-livepatch-6.1.158-178.288

Issue Overview: In the Linux kernel, the following vulnerability has been resolved: net: openvswitch: remove never-working support for setting nsh fields CVE-2025-40254 Affected Packages: kernel-livepatch-6.1.158-178.288 Issue Correction: Please ensure you have live patching enabled. Run dnf upda...

5.3AI score0.00199EPSS
Exploits0
Amazon
Amazon
•added 2026/02/05 12:0 a.m.•9 views

Important: java-25-amazon-corretto

Issue Overview: Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: RMI. Supported versions that are affected are Oracle Java SE: 8u471, 8u471-b50, 8u471-perf, 11.0.29, 17.0.17, 21.0.9, 25.0.1; Oracle GraalVM for JDK:...

7.5CVSS5.6AI score0.00864EPSS
Exploits1
Amazon
Amazon
•added 2026/02/05 12:0 a.m.•9 views

Important: java-1.8.0-amazon-corretto

Issue Overview: Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: RMI. Supported versions that are affected are Oracle Java SE: 8u471, 8u471-b50, 8u471-perf, 11.0.29, 17.0.17, 21.0.9, 25.0.1; Oracle GraalVM for JDK:...

7.5CVSS5.6AI score0.00864EPSS
Exploits1
Amazon
Amazon
•added 2026/02/05 12:0 a.m.•9 views

Important: java-17-amazon-corretto

Issue Overview: Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: RMI. Supported versions that are affected are Oracle Java SE: 8u471, 8u471-b50, 8u471-perf, 11.0.29, 17.0.17, 21.0.9, 25.0.1; Oracle GraalVM for JDK:...

7.5CVSS5.6AI score0.00864EPSS
Exploits1
Amazon
Amazon
•added 2026/02/05 12:0 a.m.•9 views

Important: java-11-amazon-corretto

Issue Overview: Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: RMI. Supported versions that are affected are Oracle Java SE: 8u471, 8u471-b50, 8u471-perf, 11.0.29, 17.0.17, 21.0.9, 25.0.1; Oracle GraalVM for JDK:...

7.5CVSS5.6AI score0.00864EPSS
Exploits1
Amazon
Amazon
•added 2026/02/05 12:0 a.m.•9 views

Important: kernel6.12

Issue Overview: In the Linux kernel, the following vulnerability has been resolved: net: use dstdevrcu in sksetupcaps CVE-2025-40170 In the Linux kernel, the following vulnerability has been resolved: netfilter: nftct: add seqadj extension for natted connections CVE-2025-68206 In the Linux kernel...

7.8CVSS7AI score0.00209EPSS
Exploits0
Amazon
Amazon
•added 2026/02/05 12:0 a.m.•9 views

Medium: amazon-ecr-credential-helper

Issue Overview: net/http: memory exhaustion in Request.ParseForm CVE-2025-61726 archive/zip: denial of service when parsing arbitrary ZIP archives CVE-2025-61728 crypto/tls: handshake messages may be processed at the incorrect encryption level CVE-2025-61730 crypto/tls: Config.Clone copies...

10CVSS7.5AI score0.01945EPSS
Exploits2
Amazon
Amazon
•added 2026/02/05 12:0 a.m.•9 views

Medium: amazon-ecr-credential-helper

Issue Overview: net/http: memory exhaustion in Request.ParseForm CVE-2025-61726 archive/zip: denial of service when parsing arbitrary ZIP archives CVE-2025-61728 crypto/tls: handshake messages may be processed at the incorrect encryption level CVE-2025-61730 crypto/tls: Config.Clone copies...

10CVSS7.5AI score0.01945EPSS
Exploits2
Amazon
Amazon
•added 2026/02/05 12:0 a.m.•9 views

Medium: cri-tools

Issue Overview: net/http: memory exhaustion in Request.ParseForm CVE-2025-61726 archive/zip: denial of service when parsing arbitrary ZIP archives CVE-2025-61728 crypto/tls: handshake messages may be processed at the incorrect encryption level CVE-2025-61730 crypto/tls: Config.Clone copies...

10CVSS7.5AI score0.01945EPSS
Exploits2
Amazon
Amazon
•added 2026/02/05 12:0 a.m.•9 views

Medium: capstone

Issue Overview: Capstone is a disassembly framework. In versions 6.0.0-Alpha5 and prior, Skipdata length is not bounds-checked, so a user-provided skipdata callback can make csdisasm/csdisasmiter memcpy more than 24 bytes into csinsn.bytes, causing a heap buffer overflow in the disassembly path...

7.8CVSS5.8AI score0.00191EPSS
Exploits1
Amazon
Amazon
•added 2026/02/05 12:0 a.m.•9 views

Important: golang

Issue Overview: net/http: memory exhaustion in Request.ParseForm CVE-2025-61726 archive/zip: denial of service when parsing arbitrary ZIP archives CVE-2025-61728 crypto/tls: handshake messages may be processed at the incorrect encryption level CVE-2025-61730 cmd/go: bypass of flag sanitization ca...

10CVSS6.3AI score0.01945EPSS
Exploits2
Amazon
Amazon
•added 2026/01/23 12:0 a.m.•9 views

Important: openexr

Issue Overview: Academy Software Foundation OpenEXR EXR File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Academy Software Foundation OpenEXR. User interaction is required ...

7.8CVSS7.6AI score0.00158EPSS
Exploits0
Amazon
Amazon
•added 2026/01/21 12:0 a.m.•9 views

Important: sox

Issue Overview: SoX 14.4.2 contains a division by zero vulnerability when handling WAV files that can cause program crashes. Attackers can trigger a floating point exception by providing a specially crafted WAV file that causes arithmetic errors during sound file processing. CVE-2022-50798 Affect...

5.6AI score0.00039EPSS
Exploits1
Amazon
Amazon
•added 2026/01/21 12:0 a.m.•9 views

Important: gnupg2

Issue Overview: In GnuPG before 2.4.9, armorfilter in g10/armor.c has two increments of an index variable where one is intended, leading to an out-of-bounds write for crafted input. For ExtendedLTS, 2.2.51 and later are fixed versions. CVE-2025-68973 Affected Packages: gnupg2 Note: This advisory ...

7.8CVSS5.6AI score0.00129EPSS
Exploits1
Amazon
Amazon
•added 2026/01/07 12:0 a.m.•9 views

Medium: mariadb1011

Issue Overview: A flaw was found in MariaDB. This vulnerability allows remote attackers to execute arbitrary code on affected installations via improper validation of a user-supplied path prior to using it in file operations in the mariadb-dump utility, requiring user interaction. CVE-2025-13699...

7CVSS7.3AI score0.00414EPSS
Exploits0
Amazon
Amazon
•added 2026/01/07 12:0 a.m.•9 views

Important: amazon-ecr-credential-helper

Issue Overview: crypto/x509: excluded subdomain constraint does not restrict wildcard SANs An excluded subdomain constraint in a certificate chain does not restrict the usage of wildcard SANs in the leaf certificate. For example a constraint that excludes the subdomain test.example.com does not...

7.5CVSS6.6AI score0.00563EPSS
Exploits3
Amazon
Amazon
•added 2026/01/07 12:0 a.m.•9 views

Important: amazon-cloudwatch-agent

Issue Overview: SSH Agent servers do not validate the size of messages when processing new identity requests, which may cause the program to panic if the message is malformed due to an out of bounds read. CVE-2025-47914 SSH servers parsing GSSAPI authentication requests do not validate the number...

7.5CVSS7.3AI score0.00521EPSS
Exploits2
Amazon
Amazon
•added 2026/01/05 12:0 a.m.•9 views

Important: kernel

Issue Overview: In the Linux kernel, the following vulnerability has been resolved: netfilter: nftables: reject duplicate device on updates CVE-2025-38678 In the Linux kernel, the following vulnerability has been resolved: mm/ksm: fix flag-dropping behavior in ksmmadvise CVE-2025-40040 In the Lin...

5.5CVSS6.5AI score0.00544EPSS
Exploits4
Amazon
Amazon
•added 2025/12/08 12:0 a.m.•9 views

Important: firefox

Issue Overview: A heap buffer over-read vulnerability exists in libpng's pngdoquantize function when processing PNG files with malformed palette indices. The vulnerability occurs when palettelookup array bounds are not validated against externally-supplied image data, allowing an attacker to craf...

7.1CVSS7.3AI score0.00281EPSS
Exploits5
Amazon
Amazon
•added 2025/12/08 12:0 a.m.•9 views

Important: cni-plugins

Issue Overview: net/url: insufficient validation of bracketed IPv6 hostnames The Parse function permitted values other than IPv6 addresses to be included in square brackets within the host component of a URL. RFC 3986 permits IPv6 addresses to be included within the host component, enclosed withi...

7.5CVSS8.9AI score0.00626EPSS
Exploits0
Amazon
Amazon
•added 2025/12/08 12:0 a.m.•9 views

Medium: curl

Issue Overview: wcurl path traversal with percent-encoded slashes URLs containing percent-encoded slashes / or \ can trick wcurl into saving the output file outside of the current directory without the user explicitly asking for it. CVE-2025-11563 Affected Packages: curl Note: This advisory is...

4.6CVSS6.7AI score0.00302EPSS
Exploits0
Amazon
Amazon
•added 2025/12/08 12:0 a.m.•9 views

Important: firefox

Issue Overview: A heap buffer over-read vulnerability exists in libpng's pngdoquantize function when processing PNG files with malformed palette indices. The vulnerability occurs when palettelookup array bounds are not validated against externally-supplied image data, allowing an attacker to craf...

7.1CVSS7.4AI score0.00281EPSS
Exploits5
Amazon
Amazon
•added 2025/11/10 12:0 a.m.•9 views

Important: runfinch-finch

Issue Overview: net/url: insufficient validation of bracketed IPv6 hostnames The Parse function permitted values other than IPv6 addresses to be included in square brackets within the host component of a URL. RFC 3986 permits IPv6 addresses to be included within the host component, enclosed withi...

7.5CVSS8.8AI score0.00626EPSS
Exploits0
Amazon
Amazon
•added 2025/11/10 12:0 a.m.•9 views

Important: amazon-cloudwatch-agent

Issue Overview: net/url: insufficient validation of bracketed IPv6 hostnames The Parse function permitted values other than IPv6 addresses to be included in square brackets within the host component of a URL. RFC 3986 permits IPv6 addresses to be included within the host component, enclosed withi...

7.5CVSS6.9AI score0.00626EPSS
Exploits0
Amazon
Amazon
•added 2025/11/10 12:0 a.m.•9 views

Medium: fontforge

Issue Overview: FontForge v20230101 was discovered to contain a memory leak via the component DlgCreate8. CVE-2025-50949 Affected Packages: fontforge Note: This advisory is applicable to Amazon Linux 2 AL2 Core repository. Visit this FAQ section for the difference between AL2 Core and AL2 Extras...

6.5CVSS7.4AI score0.00239EPSS
Exploits0
Amazon
Amazon
•added 2025/11/10 12:0 a.m.•9 views

Important: tomcat10

Issue Overview: Relative Path Traversal vulnerability in Apache Tomcat. The fix for bug 60013 introduced a regression where the rewritten URL was normalized before it was decoded. This introduced the possibility that, for rewrite rules that rewrite query parameters to the URL, an attacker could...

7.5CVSS7.7AI score0.66535EPSS
Exploits4
Amazon
Amazon
•added 2025/11/10 12:0 a.m.•9 views

Medium: nerdctl

Issue Overview: go-viper's mapstructure May Leak Sensitive Information in Logs When Processing Malformed Data CVE-2025-11065 Affected Packages: nerdctl Issue Correction: Run dnf update nerdctl --releasever 2023.9.20251110 or dnf update --advisory ALAS2023-2025-1259 --releasever 2023.9.20251110 to...

5.3CVSS6.8AI score0.00357EPSS
Exploits0
Amazon
Amazon
•added 2025/10/27 12:0 a.m.•9 views

Important: perl-YAML-Syck

Issue Overview: YAML::Syck versions before 1.36 for Perl has missing null-terminators which causes out-of-bounds read and potential information disclosure Missing null terminators in token.c leads to but-of-bounds read which allows adjacent variable to be read The issue is seen with complex YAML...

6.5CVSS6.4AI score0.00243EPSS
Exploits0
Amazon
Amazon
•added 2025/10/27 12:0 a.m.•9 views

Important: kernel

Issue Overview: In the Linux kernel, the following vulnerability has been resolved: netdevsim: fix memory leak in nsimdrvprobe when nsimdevresourcesregister failed CVE-2022-50500 In the Linux kernel, the following vulnerability has been resolved: scsi: qla2xxx: Use rawsmpprocessorid instead of...

7.8CVSS6.9AI score0.00236EPSS
Exploits2
Amazon
Amazon
•added 2025/10/27 12:0 a.m.•9 views

Medium: libxslt

Issue Overview: A use-after-free vulnerability was found in libxslt while parsing xsl nodes that may lead to the dereference of expired pointers and application crash. CVE-2025-10911 Affected Packages: libxslt Issue Correction: Run dnf update libxslt --releasever 2023.9.20251027 or dnf update...

5.5CVSS6.5AI score0.00161EPSS
Exploits0
Amazon
Amazon
•added 2025/10/27 12:0 a.m.•9 views

Important: 7zip

Issue Overview: This vulnerability allows remote attackers to execute arbitrary code on affected installations of 7-Zip. Interaction with this product is required to exploit this vulnerability but attack vectors may vary depending on the implementation. The specific flaw exists within the handlin...

7.8CVSS7.5AI score0.27017EPSS
Exploits11
Amazon
Amazon
•added 2025/10/23 12:0 a.m.•9 views

Critical: dotnet9.0

Issue Overview: Improper link resolution before file access 'link following' in .NET allows an authorized attacker to elevate privileges locally. CVE-2025-55247 Inadequate encryption strength in .NET, .NET Framework, Visual Studio allows an authorized attacker to disclose information over a...

9.9CVSS6.7AI score0.66258EPSS
Exploits5
Amazon
Amazon
•added 2025/10/14 12:0 a.m.•9 views

Low: docker

Issue Overview: Moby is an open source container framework developed by Docker Inc. that is distributed as Docker Engine, Mirantis Container Runtime, and various other downstream projects/products. A firewalld vulnerability affects Moby releases before 28.0.0. When firewalld reloads, Docker fails...

5.2CVSS6.8AI score0.00152EPSS
Exploits0
Amazon
Amazon
•added 2025/09/29 12:0 a.m.•9 views

Important: kernel-livepatch-5.10.238-231.953

Issue Overview: In the Linux kernel, the following vulnerability has been resolved: smb: client: fix use-after-free in cifsoplockbreak CVE-2025-38527 In the Linux kernel, the following vulnerability has been resolved: net/sched: Fix backlog accounting in qdiscdequeueinternal CVE-2025-39677 In the...

7.8CVSS6.7AI score0.00181EPSS
Exploits0
Amazon
Amazon
•added 2025/09/29 12:0 a.m.•9 views

Important: kernel-livepatch-5.10.240-238.959

Issue Overview: In the Linux kernel, the following vulnerability has been resolved: smb: client: fix use-after-free in cifsoplockbreak CVE-2025-38527 In the Linux kernel, the following vulnerability has been resolved: net/sched: Fix backlog accounting in qdiscdequeueinternal CVE-2025-39677 In the...

7.8CVSS6.7AI score0.00181EPSS
Exploits0
Amazon
Amazon
•added 2025/09/29 12:0 a.m.•9 views

Important: microcode_ctl

Issue Overview: Insufficient granularity of access control in the OOB-MSM for some IntelR XeonR 6 Scalable processors may allow a privileged user to potentially enable escalation of privilege via adjacent access. CVE-2025-22839 Sequence of processor instructions leads to unexpected behavior for...

7.9CVSS7.1AI score0.00169EPSS
Exploits0
Amazon
Amazon
•added 2025/09/29 12:0 a.m.•9 views

Important: amazon-ssm-agent

Issue Overview: The net/http package accepted data in the chunked transfer encoding containing an invalid chunk-size line terminated by a bare LF. When used in conjunction with a server or proxy which incorrectly interprets a bare LF in a chunk extension as part of the extension, this could permi...

9.1CVSS7.1AI score0.00724EPSS
Exploits0
Amazon
Amazon
•added 2025/09/16 12:0 a.m.•9 views

Important: microcode_ctl

Issue Overview: A potential security vulnerability in some Intelr Processors may allow information disclosure. Intel is releasing microcode updates and prescriptive guidance to mitigate this potential vulnerability. Info:...

7.8CVSS7.3AI score0.00371EPSS
Exploits0
Amazon
Amazon
•added 2025/09/04 12:0 a.m.•9 views

Important: kernel

Issue Overview: In the Linux kernel, the following vulnerability has been resolved: scsi: lpfc: Prevent buffer overflow crashes in debugfs with malformed user input CVE-2022-50030 In the Linux kernel, the following vulnerability has been resolved: iavf: Fix adminq error handling CVE-2022-50055 In...

7.8CVSS6.9AI score0.01345EPSS
Exploits8
Amazon
Amazon
•added 2025/08/19 12:0 a.m.•9 views

Medium: perl-Authen-SASL

Issue Overview: Authen::SASL::Perl::DIGESTMD5 versions 2.04 through 2.1800 for Perl generates the cnonce insecurely. The cnonce client nonce is generated from an MD5 hash of the PID, the epoch time and the built-in rand function. The PID will come from a small set of numbers, and the epoch time m...

6.5CVSS7AI score0.00394EPSS
Exploits0
Amazon
Amazon
•added 2025/08/08 12:0 a.m.•9 views

Important: kernel

Issue Overview: In the Linux kernel, the following vulnerability has been resolved: Drivers: hv: vmbus: Leak pages if setmemoryencrypted fails CVE-2024-36913 In the Linux kernel, the following vulnerability has been resolved: xfs: don't walk off the end of a directory data block CVE-2024-41013 In...

8.1CVSS7.5AI score0.01345EPSS
Exploits8
Total number of security vulnerabilities5000