All 4 CVE vulnerabilities found in AWS IoT Device SDK v2 for Java, with AI-generated Chinese analysis, references, and POCs.
Vendor: Amazon Web Services
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2021-40831 | Missing SNI validation and inconsistent CA override function behavior within AWS IoT Device SDKs on Apple devices | 6.3 | Medium | 2021-11-22 |
| CVE-2021-40830 | Inconsistent CA override function behavior within AWS IoT Device SDKs on Unix systems | 6.3 | Medium | 2021-11-22 |
| CVE-2021-40829 | TLS hostname validation issues within AWS IoT Device SDKs on macOS | 6.3 | Medium | 2021-11-22 |
| CVE-2021-40828 | TLS hostname validation issues within AWS IoT Device SDKs on Windows | 6.3 | Medium | 2021-11-22 |
All 4 known CVE vulnerabilities affecting AWS IoT Device SDK v2 for Java with full Chinese analysis, references, and POCs where available.