Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Amazon Web Services — Vulnerabilities & Security Advisories 8

Browse all 8 CVE security advisories affecting Amazon Web Services. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Amazon Web Services provides scalable cloud computing infrastructure and services for businesses globally. Historically, common vulnerabilities include remote code execution, cross-site scripting, and privilege escalation flaws, often stemming from misconfigurations or service-specific weaknesses. While AWS maintains robust security controls, notable incidents include the 2020 Capital One breach where a misconfigured S3 bucket exposed 100 million customer records, and the 2023 vulnerability in AWS Lambda that allowed privilege escalation. The platform's extensive attack surface and complex permission models require careful configuration to prevent unauthorized access and data exposure.

Top products by Amazon Web Services: AWS IoT Device SDK v2 for Java log4j-cve-2021-44228-hotpatch Hotdog
CVE IDTitleCVSSSeverityPublished
CVE-2022-0071 Hotdog Container Escape — HotdogCWE-250 8.8 High2022-04-19
CVE-2022-0070 Log4j hot patch package privilege escalation — log4j-cve-2021-44228-hotpatchCWE-250 8.8 High2022-04-19
CVE-2021-3101 Hotdog Container Escape — HotdogCWE-250 8.8 High2022-04-19
CVE-2021-3100 Log4j hot patch package privilege escalation — log4j-cve-2021-44228-hotpatchCWE-250 8.8 High2022-04-19
CVE-2021-40831 Missing SNI validation and inconsistent CA override function behavior within AWS IoT Device SDKs on Apple devices — AWS IoT Device SDK v2 for Java 6.3 Medium2021-11-22
CVE-2021-40830 Inconsistent CA override function behavior within AWS IoT Device SDKs on Unix systems — AWS IoT Device SDK v2 for Java 6.3 Medium2021-11-22
CVE-2021-40829 TLS hostname validation issues within AWS IoT Device SDKs on macOS — AWS IoT Device SDK v2 for Java 6.3 Medium2021-11-22
CVE-2021-40828 TLS hostname validation issues within AWS IoT Device SDKs on Windows — AWS IoT Device SDK v2 for Java 6.3 Medium2021-11-22

This page lists every published CVE security advisory associated with Amazon Web Services. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.