Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
amazon tough vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2020-15093
The tough library (Rust/crates.io) prior to version 0.7.1 does not properly verify the threshold of cryptographic signatures. It allows an malicious user to duplicate a valid signature in order to circumvent TUF requiring a minimum threshold of unique signatures before the metada...
Amazon Tough
8.5
CVSSv2
CVE-2021-41149
Tough provides a set of Rust libraries and tools for using and generating the update framework (TUF) repositories. The tough library, before 0.12.0, does not properly sanitize target names when caching a repository, or when saving specific targets to an output directory. When tar...
Amazon Tough
3.5
CVSSv2
CVE-2021-41150
Tough provides a set of Rust libraries and tools for using and generating the update framework (TUF) repositories. The tough library, before 0.12.0, does not properly sanitize delegated role names when caching a repository, or when loading a repository from the filesystem. When t...
Amazon Tough
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-30310
CVE-2024-21683
CVE-2024-22187
chrome
deserialization
XPath injection
CVE-2024-27842
denial of service
CVE-2024-24851
google
CVE-2024-35400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started