Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1325 CNY

100%
Buy Us a Coffee

aws — Vulnerabilities & Security Advisories 82

Browse all 82 CVE security advisories affecting aws. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Amazon Web Services operates as a comprehensive cloud computing platform, providing infrastructure, storage, and networking solutions to enterprises globally. With 68 recorded Common Vulnerabilities and Exposures, the platform’s security landscape reflects the complexity of its vast ecosystem. Historically, identified flaws have predominantly involved cross-site scripting, remote code execution, and privilege escalation issues, often stemming from misconfigurations or third-party component dependencies rather than core hypervisor failures. Notable incidents have occasionally highlighted risks associated with shared responsibility models, where customer-side errors led to data exposure. Despite these challenges, AWS maintains robust isolation mechanisms and continuous monitoring protocols. The frequency of vulnerabilities underscores the necessity for rigorous patch management and strict access controls. Users must remain vigilant, recognizing that while the underlying infrastructure is hardened, the security of deployed workloads largely depends on proper configuration and adherence to best practices within the shared responsibility framework.

Top products by aws: FreeRTOS-Plus-TCP tough Kiro IDE AWS-LC Research and Engineering Studio (RES) aws-cdk Client VPN Firecracker SageMaker Python SDK AWS Ops Wheel AWS Serverless Application Model Command Line Interface sagemaker-python-sdk QnABot on AWS bedrock-agentcore aws-c-http s2n-quic AgentCore CLI AWS API MCP Server Bedrock AgentCore Starter Toolkit aws-c-event-stream AWS Encryption SDK for Python Amazon Braket Python SDK Amazon ECS Agent Amazon Redshift connector for Python AWS Advanced JDBC Wrapper RabbitMQ AWS AWS Cloud Development Kit library AWS SDK for Ruby AWS Advanced Go Wrapper Graph Explorer
CVE IDTitleCVSSSeverityPublished
CVE-2026-12530 Improper neutralization of argument delimiters in AWS Bedrock AgentCore Python SDK install_packages() — bedrock-agentcoreCWE-88 7.3 High2026-06-17
CVE-2026-11931 Insecure Permissions on Authentication Token Cache File in Kiro IDE — Kiro IDECWE-276 5.5 Medium2026-06-15
CVE-2026-12043 Heap double-free in AWS Common Runtime aws-c-http — aws-c-httpCWE-415 8.8 High2026-06-12
CVE-2026-10740 Excessive memory allocation in s2n-quic — s2n-quicCWE-770 5.3 Medium2026-06-10
CVE-2026-11417 OS Command Injection in NodejsFunction Bundling in aws-cdk-lib — AWS Cloud Development Kit libraryCWE-78 7.3 High2026-06-10
CVE-2026-11393 Code injection via improper triple-quote escaping in AgentCore CLI Bedrock Agent import — AgentCore CLICWE-94 9.0 Critical2026-06-08
CVE-2026-11401 Privilege Escalation in AWS Advanced Go Wrapper for Amazon Aurora PostgreSQL — AWS Advanced Go WrapperCWE-426 8.0 High2026-06-05
CVE-2026-11400 Privilege Escalation in AWS Advanced JDBC Wrapper for Amazon Aurora PostgreSQL — AWS Advanced JDBC WrapperCWE-426 8.0 High2026-06-05
CVE-2026-10584 HTTPS Fallback to HTTP in Graph Explorer — Graph ExplorerCWE-319 5.9 Medium2026-06-02
CVE-2026-10591 Kiro IDE Insufficient File Write Restrictions to Execution-Sensitive Paths — Kiro IDECWE-732 8.8 High2026-06-02
CVE-2026-9291 Insecure Deserialization in Amazon Braket SDK Job Results Processing — Amazon Braket Python SDKCWE-502 7.1 High2026-05-22
CVE-2026-9255 Tool Execution Without Authorization via Piped Stdin in Kiro CLI — Kiro CLICWE-862 7.8 High2026-05-22
CVE-2026-9133 Arbitrary file read in rabbitmq-aws plugin — RabbitMQ AWSCWE-489 7.7 High2026-05-20
CVE-2026-8838 Remote Code Execution via eval() Injection in amazon-redshift-python-driver — Amazon Redshift connector for PythonCWE-94 9.8 Critical2026-05-18
CVE-2026-7461 OS Command Injection in Amazon ECS Agent via FSx Windows File Server Volume Credentials — Amazon ECS AgentCWE-78 7.2 High2026-04-30
CVE-2026-7426 Out-of-Bounds Write via Unsanitized Prefix Length in Router Advertisement Processing in FreeRTOS-Plus-TCP — FreeRTOS-Plus-TCPCWE-787 8.1 High2026-04-29
CVE-2026-7425 Out-of-Bounds Read in Router Advertisement Option Parser in FreeRTOS-Plus-TCP — FreeRTOS-Plus-TCPCWE-125 6.5 Medium2026-04-29
CVE-2026-7424 Integer Underflow in DHCPv6 Sub-Option Parser in FreeRTOS-Plus-TCP — FreeRTOS-Plus-TCPCWE-191 8.1 High2026-04-29
CVE-2026-7423 Integer Underflow in ICMP Echo Reply Processing in FreeRTOS-Plus-TCP — FreeRTOS-Plus-TCPCWE-191 5.3 Medium2026-04-29
CVE-2026-7422 MAC Address Validation Bypass in FreeRTOS-Plus-TCP IPv4 and IPv6 Packet Processing — FreeRTOS-Plus-TCPCWE-290 6.5 Medium2026-04-29
CVE-2026-7191 Arbitrary Code Execution via Sandbox Bypass in the open source solution QnABot on AWS — QnABot on AWSCWE-94 7.2 High2026-04-27
CVE-2026-6968 Multiple Path Traversal Variants in awslabs/tough — toughCWE-22 5.9 Medium2026-04-24
CVE-2026-6967 Missing Delegated Metadata Validation in awslabs/tough — toughCWE-345 5.9 Medium2026-04-24
CVE-2026-6966 Signature Threshold Bypass in awslabs/tough Delegated Roles — toughCWE-347 5.3 Medium2026-04-24
CVE-2026-6912 Privilege Escalation via Self-Writable Cognito Custom Attribute in AWS Ops Wheel — AWS Ops WheelCWE-915 8.8 High2026-04-24
CVE-2026-6911 Authentication Bypass via Missing JWT Signature Verification in AWS Ops Wheel — AWS Ops WheelCWE-347 9.8 Critical2026-04-24
CVE-2026-6550 Key commitment policy bypass via shared key cache in AWS Encryption SDK for Python — AWS Encryption SDK for PythonCWE-757 4.7 Medium2026-04-20
CVE-2026-5747 Out-of-bounds Write in Firecracker virtio-pci Transport — FirecrackerCWE-787 7.5 High2026-04-07
CVE-2026-5709 AWS Research and Engineering Studio (RES) FileBrowser Command Injection — Research and Engineering Studio (RES)CWE-78 8.8 High2026-04-06
CVE-2026-5708 Improper Control of User-Modifiable Attributes in RES CreateSession API — Research and Engineering Studio (RES)CWE-915 8.8 High2026-04-06

This page lists every published CVE security advisory associated with aws. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.