Vulnerabilities

Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.

Filtering: Tag: cloud Clear
ID Title
CVE-2026-14904 Vulnerability in Amazon aws (CVE-2026-14904)
vulnerability in Amazon aws (CVE-2026-14904). Confidential information can be exposed externally.
CVE-2026-14471 SQL Injection in Amazon aws (CVE-2026-14471)
SQL injection in Amazon aws (CVE-2026-14471). Confidential information can be exposed externally.
CVE-2026-14265 Unsafe Deserialization in Amazon aws (CVE-2026-14265)
vulnerability in Amazon aws (CVE-2026-14265). Successful exploitation can lead to full system takeover.
CVE-2026-13760 OS Command Injection in Amazon aws (CVE-2026-13760)
OS command injection in Amazon aws (CVE-2026-13760). Successful exploitation can lead to full system takeover.
CVE-2026-13769 Vulnerability in Amazon aws (CVE-2026-13769)
vulnerability in Amazon aws (CVE-2026-13769). Confidential information can be exposed externally.
CVE-2026-13762 Vulnerability in Amazon aws (CVE-2026-13762)
vulnerability in Amazon aws (CVE-2026-13762). Successful exploitation can lead to full system takeover.
CVE-2026-12957 Vulnerability in Amazon aws (CVE-2026-12957)
vulnerability in Amazon aws (CVE-2026-12957). Successful exploitation can lead to full system takeover.
CVE-2026-50195 Vulnerability in Amazon github.com/containerd/containerd/v2 (CVE-2026-50195)
vulnerability in Amazon github.com/containerd/containerd/v2 (CVE-2026-50195). Successful exploitation can lead to full system takeover. Exploitable via ``IfNotPresent``. Mitigation: upgrade to `2.3.2` or later.
CVE-2026-12530 Vulnerability in Amazon bedrock-agentcore (CVE-2026-12530)
vulnerability in Amazon bedrock-agentcore (CVE-2026-12530). Confidential information can be exposed externally. Mitigation: upgrade to `1.6.1` or later.
CVE-2026-11931 Vulnerability in Amazon aws (CVE-2026-11931)
vulnerability in Amazon aws (CVE-2026-11931). Confidential information can be exposed externally.
CVE-2026-12043 Vulnerability in Amazon aws (CVE-2026-12043)
vulnerability in Amazon aws (CVE-2026-12043). Successful exploitation can lead to full system takeover.
CVE-2026-10740 Vulnerability in Amazon aws (CVE-2026-10740)
vulnerability in Amazon aws (CVE-2026-10740). Risk of unauthorized operations or information disclosure.
CVE-2026-11393 Code Injection in Amazon aws (CVE-2026-11393)
code injection in Amazon aws (CVE-2026-11393). Successful exploitation can lead to full system takeover.
CVE-2026-11400 CVE-2026-11400 and CVE-2026-11401
Bulletin ID: 2026-039-AWS Scope: AWS Content Type: Important (requires attention) Publication Date: 06/025/2026 12:15 PM PDT Description: Amazon Aurora PostgreSQL a fully managed relational database engine that's compatible with PostgreSQL. We identified CVE-2026-11400(JDBC) and CVE-2026-11401(Go), an issue in AWS Wrappers for Amazon Aurora PostgreSQL will allow for privilege escalation to rds_superuser role. A low privilege authenticated user can create a crafted function that could be executed with permissions of other Amazon Relational Database Service (RDS) users. Impacted versions: - AWS Advanced JDBC Wrapper >=3.0.0 and < 4.0.1 - AWS Advanced Go Wrapper release 2026-04-06 Please refer to the article below for the most up-to-date and complete information related to this AWS Security Bulletin.
CVE-2026-10584 Vulnerability in Amazon aws (CVE-2026-10584)
vulnerability in Amazon aws (CVE-2026-10584). Confidential information can be exposed externally.
CVE-2026-10591 Vulnerability in Amazon aws (CVE-2026-10591)
vulnerability in Amazon aws (CVE-2026-10591). Successful exploitation can lead to full system takeover.
CVE-2026-9291 Unsafe Deserialization in amazon-braket-sdk (CVE-2026-9291)
vulnerability in amazon-braket-sdk (CVE-2026-9291). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `1.117.0` or later.
CVE-2026-9255 Vulnerability in Amazon aws (CVE-2026-9255)
vulnerability in Amazon aws (CVE-2026-9255). Successful exploitation can lead to full system takeover.
CVE-2026-9133 Vulnerability in Amazon aws (CVE-2026-9133)
vulnerability in Amazon aws (CVE-2026-9133). Confidential information can be exposed externally. Exploitable via `PUT /api/aws/arn/validate`.
CVE-2026-8838 Code Injection in Amazon redshift-connector (CVE-2026-8838)
code injection in Amazon redshift-connector (CVE-2026-8838). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `2.1.14` or later.
CVE-2026-8686 Out-of-Bounds Read in Amazon aws (CVE-2026-8686)
vulnerability in Amazon aws (CVE-2026-8686). Risk of unauthorized operations or information disclosure.
CVE-2026-8596 Vulnerability in Amazon sagemaker (CVE-2026-8596)
vulnerability in Amazon sagemaker (CVE-2026-8596). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `3.8.0` or later.
CVE-2026-46300 Out-of-Bounds Write in Amazon aws (CVE-2026-46300)
out-of-bounds write in Amazon aws (CVE-2026-46300). Successful exploitation can lead to full system takeover.
CVE-2025-8904 Vulnerability in Amazon aws (CVE-2025-8904)
vulnerability in Amazon aws (CVE-2025-8904). Risk of unauthorized operations or information disclosure.
CVE-2026-7461 Vulnerability in Amazon aws (CVE-2026-7461)
vulnerability in Amazon aws (CVE-2026-7461). Risk of unauthorized operations or information disclosure.
CVE-2026-4428 Vulnerability in Amazon aws (CVE-2026-4428)
vulnerability in Amazon aws (CVE-2026-4428). Risk of unauthorized operations or information disclosure.
CVE-2026-4269 Vulnerability in Amazon aws (CVE-2026-4269)
vulnerability in Amazon aws (CVE-2026-4269). Successful exploitation can lead to full system takeover.
CVE-2026-5429 Vulnerability in Amazon aws (CVE-2026-5429)
vulnerability in Amazon aws (CVE-2026-5429). Risk of unauthorized operations or information disclosure.
CVE-2026-7791 Vulnerability in Amazon aws (CVE-2026-7791)
vulnerability in Amazon aws (CVE-2026-7791). Risk of unauthorized operations or information disclosure.
CVE-2026-7425 Vulnerability in Amazon aws (CVE-2026-7425)
vulnerability in Amazon aws (CVE-2026-7425). Risk of unauthorized operations or information disclosure.
CVE-2026-6966 Vulnerability in Amazon tough (CVE-2026-6966)
vulnerability in Amazon tough (CVE-2026-6966). Data can be tampered with by attackers. Mitigation: upgrade to `0.22.0` or later.
CVE-2026-3494 Vulnerability in Amazon aws (CVE-2026-3494)
vulnerability in Amazon aws (CVE-2026-3494). Risk of unauthorized operations or information disclosure.
CVE-2025-8217 Vulnerability in Amazon aws (CVE-2025-8217)
vulnerability in Amazon aws (CVE-2025-8217). Risk of unauthorized operations or information disclosure.
CVE-2025-8069 Vulnerability in Amazon aws (CVE-2025-8069)
vulnerability in Amazon aws (CVE-2025-8069). Risk of unauthorized operations or information disclosure.
CVE-2026-7191 Vulnerability in Amazon aws (CVE-2026-7191)
vulnerability in Amazon aws (CVE-2026-7191). Risk of unauthorized operations or information disclosure.
CVE-2025-6031 Vulnerability in Amazon aws (CVE-2025-6031)
vulnerability in Amazon aws (CVE-2025-6031). Risk of unauthorized operations or information disclosure.
CVE-2026-5747 Vulnerability in Amazon aws (CVE-2026-5747)
vulnerability in Amazon aws (CVE-2026-5747). Successful exploitation can lead to full system takeover.
CVE-2025-9039 Vulnerability in Amazon aws (CVE-2025-9039)
vulnerability in Amazon aws (CVE-2025-9039). Risk of unauthorized operations or information disclosure.
CVE-2025-14503 Vulnerability in Amazon aws (CVE-2025-14503)
vulnerability in Amazon aws (CVE-2025-14503). Risk of unauthorized operations or information disclosure.
CVE-2026-4270 Vulnerability in Amazon awslabs-aws-api-mcp-server (CVE-2026-4270)
vulnerability in Amazon awslabs-aws-api-mcp-server (CVE-2026-4270). Confidential information can be exposed externally. Mitigation: upgrade to `1.3.9` or later.
CVE-2025-14763 Vulnerability in Amazon aws (CVE-2025-14763)
vulnerability in Amazon aws (CVE-2025-14763). Risk of unauthorized operations or information disclosure.
CVE-2026-1386 Vulnerability in Amazon aws (CVE-2026-1386)
vulnerability in Amazon aws (CVE-2026-1386). Risk of unauthorized operations or information disclosure.
CVE-2026-6437 Vulnerability in Amazon aws (CVE-2026-6437)
vulnerability in Amazon aws (CVE-2026-6437). Confidential information can be exposed externally.
CVE-2026-7422 Vulnerability in Amazon aws (CVE-2026-7422)
vulnerability in Amazon aws (CVE-2026-7422). Risk of unauthorized operations or information disclosure.
CVE-2026-3336 Vulnerability in Amazon aws (CVE-2026-3336)
vulnerability in Amazon aws (CVE-2026-3336). Data can be tampered with by attackers.
CVE-2026-5707 Vulnerability in Amazon aws (CVE-2026-5707)
vulnerability in Amazon aws (CVE-2026-5707). Risk of unauthorized operations or information disclosure.
CVE-2026-0830 Vulnerability in Amazon aws (CVE-2026-0830)
vulnerability in Amazon aws (CVE-2026-0830). Risk of unauthorized operations or information disclosure.
CVE-2026-6550 Vulnerability in Amazon aws (CVE-2026-6550)
vulnerability in Amazon aws (CVE-2026-6550). Risk of unauthorized operations or information disclosure.
CVE-2026-4295 Vulnerability in Amazon aws (CVE-2026-4295)
vulnerability in Amazon aws (CVE-2026-4295). Risk of unauthorized operations or information disclosure.
CVE-2026-1777 Vulnerability in Amazon aws (CVE-2026-1777)
vulnerability in Amazon aws (CVE-2026-1777). Risk of unauthorized operations or information disclosure.

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →