Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
amazon vulnerabilities and exploits
(subscribe to this query)
7.2
CVSSv2
CVE-2019-3983
Blink XT2 Sync Module firmware before 2.13.11 allows remote malicious users to execute arbitrary code and commands on the device due to insufficient UART protections.
Amazon Blink Xt2 Sync Module Firmware
10
CVSSv2
CVE-2019-3984
Blink XT2 Sync Module firmware before 2.13.11 allows remote malicious users to execute arbitrary commands on the device due to improperly sanitized input when the device retrieves updates scripts from the internet.
Amazon Blink Xt2 Sync Module Firmware
8.3
CVSSv2
CVE-2019-3986
Blink XT2 Sync Module firmware before 2.13.11 allows remote malicious users to execute arbitrary commands on the device due to improperly sanitized input when configuring the devices wifi configuration via the encryption parameter.
Amazon Blink Xt2 Sync Module Firmware
8.3
CVSSv2
CVE-2019-3987
Blink XT2 Sync Module firmware before 2.13.11 allows remote malicious users to execute arbitrary commands on the device due to improperly sanitized input when configuring the devices wifi configuration via the key parameter.
Amazon Blink Xt2 Sync Module Firmware
8.3
CVSSv2
CVE-2019-3988
Blink XT2 Sync Module firmware before 2.13.11 allows remote malicious users to execute arbitrary commands on the device due to improperly sanitized input when configuring the devices wifi configuration via the bssid parameter.
Amazon Blink Xt2 Sync Module Firmware
9.3
CVSSv2
CVE-2021-30355
Amazon Kindle e-reader prior to and including version 5.13.4 improperly manages privileges, allowing the framework user to elevate privileges to root.
Amazon Kindle Firmware
5
CVSSv2
CVE-2020-27174
In Amazon AWS Firecracker prior to 0.21.3, and 0.22.x prior to 0.22.1, the serial console buffer can grow its memory usage without limit when data is sent to the standard input. This can result in a memory leak on the microVM emulation thread, possibly occupying more memory than ...
Amazon Firecracker
8.5
CVSSv2
CVE-2021-41149
Tough provides a set of Rust libraries and tools for using and generating the update framework (TUF) repositories. The tough library, before 0.12.0, does not properly sanitize target names when caching a repository, or when saving specific targets to an output directory. When tar...
Amazon Tough
3.5
CVSSv2
CVE-2021-41150
Tough provides a set of Rust libraries and tools for using and generating the update framework (TUF) repositories. The tough library, before 0.12.0, does not properly sanitize delegated role names when caching a repository, or when loading a repository from the filesystem. When t...
Amazon Tough
NA
CVE-2023-45807
OpenSearch is a community-driven, open source fork of Elasticsearch and Kibana following the license change in early 2021. There is an issue with the implementation of tenant permissions in OpenSearch Dashboards where authenticated users with read-only access to a tenant can perf...
Amazon Opensearch
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
race condition
CVE-2024-4249
CVE-2024-4244
CVE-2023-20198
TCP
CVE-2022-48648
CVE-2022-48636
CVE-2024-21345
SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »