Vulnerabilities > Amazon
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-12-06 | CVE-2018-16527 | Information Exposure vulnerability in Amazon web Services Freertos and Freertos Amazon Web Services (AWS) FreeRTOS through 1.3.1, FreeRTOS up to V10.0.1 (with FreeRTOS+TCP), and WITTENSTEIN WHIS Connect middleware TCP/IP component allow information disclosure during parsing of ICMP packets in prvProcessICMPPacket. | 4.3 |
| 2018-12-06 | CVE-2018-16526 | Unspecified vulnerability in Amazon web Services Freertos and Freertos Amazon Web Services (AWS) FreeRTOS through 1.3.1, FreeRTOS up to V10.0.1 (with FreeRTOS+TCP), and WITTENSTEIN WHIS Connect middleware TCP/IP component allow remote attackers to leak information or execute arbitrary code because of a Buffer Overflow during generation of a protocol checksum in usGenerateProtocolChecksum and prvProcessIPPacket. network amazon | 6.8 |
| 2018-12-06 | CVE-2018-16525 | Unspecified vulnerability in Amazon web Services Freertos and Freertos Amazon Web Services (AWS) FreeRTOS through 1.3.1, FreeRTOS up to V10.0.1 (with FreeRTOS+TCP), and WITTENSTEIN WHIS Connect middleware TCP/IP component allow remote attackers to execute arbitrary code or leak information because of a Buffer Overflow during parsing of DNS\LLMNR packets in prvParseDNSReply. network amazon | 6.8 |
| 2018-12-06 | CVE-2018-16524 | Information Exposure vulnerability in Amazon web Services Freertos and Freertos Amazon Web Services (AWS) FreeRTOS through 1.3.1, FreeRTOS up to V10.0.1 (with FreeRTOS+TCP), and WITTENSTEIN WHIS Connect middleware TCP/IP component allow information disclosure during parsing of TCP options in prvCheckOptions. | 4.3 |
| 2018-12-06 | CVE-2018-16523 | Divide By Zero vulnerability in Amazon web Services Freertos and Freertos Amazon Web Services (AWS) FreeRTOS through 1.3.1, FreeRTOS up to V10.0.1 (with FreeRTOS+TCP), and WITTENSTEIN WHIS Connect middleware TCP/IP component allow division by zero in prvCheckOptions. | 5.8 |
| 2018-12-06 | CVE-2018-16522 | Access of Uninitialized Pointer vulnerability in Amazon web Services Freertos Amazon Web Services (AWS) FreeRTOS through 1.3.1 has an uninitialized pointer free in SOCKETS_SetSockOpt. | 6.8 |
| 2018-11-14 | CVE-2018-19190 | Cross-site Scripting vulnerability in Amazon Payfort-PHP-Sdk The Amazon PAYFORT payfort-php-SDK payment gateway SDK through 2018-04-26 has XSS via the error.php error_msg parameter. | 4.3 |
| 2018-11-14 | CVE-2018-19189 | Cross-site Scripting vulnerability in Amazon Payfort-PHP-Sdk The Amazon PAYFORT payfort-php-SDK payment gateway SDK through 2018-04-26 has XSS via an arbitrary parameter name or value that is mishandled in an error.php echo statement. | 4.3 |
| 2018-11-14 | CVE-2018-19188 | Cross-site Scripting vulnerability in Amazon Payfort-PHP-Sdk The Amazon PAYFORT payfort-php-SDK payment gateway SDK through 2018-04-26 has XSS via the success.php fort_id parameter. | 4.3 |
| 2018-11-14 | CVE-2018-19187 | Cross-site Scripting vulnerability in Amazon Payfort-PHP-Sdk The Amazon PAYFORT payfort-php-SDK payment gateway SDK through 2018-04-26 has XSS via an arbitrary parameter name or value that is mishandled in a success.php echo statement. | 4.3 |