目标达成 感谢每一位支持者 — 我们达成了 100% 目标!

目标: 1000 元 · 已筹: 1325

100%
请我们喝杯咖啡

aws 厂商漏洞列表 / CVE 中文分析 82

aws 厂商相关 82 条 CVE 漏洞,含 AI 中文分析、POC、CVSS 评分与受影响产品。

AWS 提供广泛的云计算服务,涵盖计算、存储及数据库等领域。其历史漏洞多涉及远程代码执行、权限绕过及信息泄露,部分源于配置错误或组件缺陷。值得关注的是,AWS 持续强化身份与访问管理(IAM)及加密机制,并定期发布安全最佳实践。尽管漏洞数量达 68 条,但其通过自动化补丁和合规认证(如 ISO 27001)维持较高安全基线,企业需重点关注配置合规性以防范风险。

Top products by aws: FreeRTOS-Plus-TCP tough Kiro IDE AWS-LC Research and Engineering Studio (RES) aws-cdk Client VPN Firecracker SageMaker Python SDK AWS Ops Wheel AWS Serverless Application Model Command Line Interface sagemaker-python-sdk QnABot on AWS bedrock-agentcore aws-c-http s2n-quic AgentCore CLI AWS API MCP Server Bedrock AgentCore Starter Toolkit aws-c-event-stream AWS Encryption SDK for Python Amazon Braket Python SDK Amazon ECS Agent Amazon Redshift connector for Python AWS Advanced JDBC Wrapper RabbitMQ AWS AWS Cloud Development Kit library AWS SDK for Ruby AWS Advanced Go Wrapper Graph Explorer
CVE ID标题CVSS风险等级Published
CVE-2026-12530 AWS Bedrock AgentCore Python SDK 安装包参数处理漏洞 — bedrock-agentcoreCWE-88 7.3 High2026-06-17
CVE-2026-11931 AWS Kiro IDE 权限许可和访问控制问题漏洞 — Kiro IDECWE-276 5.5 Medium2026-06-15
CVE-2026-12043 aws-c-http 资源管理错误漏洞 — aws-c-httpCWE-415 8.8 High2026-06-12
CVE-2026-10740 s2n-quic 安全漏洞 — s2n-quicCWE-770 5.3 Medium2026-06-10
CVE-2026-11417 AWS Cloud Development Kit 操作系统命令注入漏洞 — AWS Cloud Development Kit libraryCWE-78 7.3 High2026-06-10
CVE-2026-11393 AgentCore CLI 代码注入漏洞 — AgentCore CLICWE-94 9.0 Critical2026-06-08
CVE-2026-11401 Amazon Web Services Advanced Go Wrapper 安全漏洞 — AWS Advanced Go WrapperCWE-426 8.0 High2026-06-05
CVE-2026-11400 Amazon Web Services JDBC Driver 安全漏洞 — AWS Advanced JDBC WrapperCWE-426 8.0 High2026-06-05
CVE-2026-10584 Graph Explorer 安全漏洞 — Graph ExplorerCWE-319 5.9 Medium2026-06-02
CVE-2026-10591 Amazon Kiro IDE 安全漏洞 — Kiro IDECWE-732 8.8 High2026-06-02
CVE-2026-9291 amazon-braket-sdk-python 安全漏洞 — Amazon Braket Python SDKCWE-502 7.1 High2026-05-22
CVE-2026-9255 Amazon Web Services Kiro CLI 安全漏洞 — Kiro CLICWE-862 7.8 High2026-05-22
CVE-2026-9133 RabbitMQ AWS infrastructure Plugin 安全漏洞 — RabbitMQ AWSCWE-489 7.7 High2026-05-20
CVE-2026-8838 Amazon Redshift Python Connector 代码注入漏洞 — Amazon Redshift connector for PythonCWE-94 9.8 Critical2026-05-18
CVE-2026-7461 Amazon ECS Container Agent 操作系统命令注入漏洞 — Amazon ECS AgentCWE-78 7.2 High2026-04-30
CVE-2026-7426 FreeRTOS-Plus-TCP 缓冲区错误漏洞 — FreeRTOS-Plus-TCPCWE-787 8.1 High2026-04-29
CVE-2026-7425 FreeRTOS-Plus-TCP 缓冲区错误漏洞 — FreeRTOS-Plus-TCPCWE-125 6.5 Medium2026-04-29
CVE-2026-7424 FreeRTOS-Plus-TCP 数字错误漏洞 — FreeRTOS-Plus-TCPCWE-191 8.1 High2026-04-29
CVE-2026-7423 FreeRTOS-Plus-TCP 数字错误漏洞 — FreeRTOS-Plus-TCPCWE-191 5.3 Medium2026-04-29
CVE-2026-7422 FreeRTOS-Plus-TCP 安全漏洞 — FreeRTOS-Plus-TCPCWE-290 6.5 Medium2026-04-29
CVE-2026-7191 aws-solutions QnABot on AWS 代码注入漏洞 — QnABot on AWSCWE-94 7.2 High2026-04-27
CVE-2026-6968 Amazon tough 路径遍历漏洞 — toughCWE-22 5.9 Medium2026-04-24
CVE-2026-6967 Amazon tough 数据伪造问题漏洞 — toughCWE-345 5.9 Medium2026-04-24
CVE-2026-6966 Amazon tough 数据伪造问题漏洞 — toughCWE-347 5.3 Medium2026-04-24
CVE-2026-6912 AWS Ops Wheel 安全漏洞 — AWS Ops WheelCWE-915 8.8 High2026-04-24
CVE-2026-6911 AWS Ops Wheel 数据伪造问题漏洞 — AWS Ops WheelCWE-347 9.8 Critical2026-04-24
CVE-2026-6550 Amazon AWS Encryption SDK 安全漏洞 — AWS Encryption SDK for PythonCWE-757 4.7 Medium2026-04-20
CVE-2026-5747 Amazon Firecracker 安全漏洞 — FirecrackerCWE-787 7.5 High2026-04-07
CVE-2026-5709 Amazon Web Services Research and Engineering Studio 安全漏洞 — Research and Engineering Studio (RES)CWE-78 8.8 High2026-04-06
CVE-2026-5708 Amazon Web Services Research and Engineering Studio 安全漏洞 — Research and Engineering Studio (RES)CWE-915 8.8 High2026-04-06

本页汇总了 aws 厂商截至目前公开的全部 82 条 CVE 漏洞。每条漏洞均包含 CVSS 评分、CWE 弱点分类、受影响产品与参考链接,并附带 AI 生成的中文分析以便快速判断风险。