Vulnerabilities > Amazon

DATE CVE VULNERABILITY TITLE RISK
2018-12-06 CVE-2018-16602 Information Exposure vulnerability in Amazon web Services Freertos and Freertos
An issue was discovered in Amazon Web Services (AWS) FreeRTOS through 1.3.1, FreeRTOS up to V10.0.1 (with FreeRTOS+TCP), and WITTENSTEIN WHIS Connect middleware TCP/IP component.
network
amazon CWE-200
4.3
2018-12-06 CVE-2018-16601 Integer Underflow (Wrap or Wraparound) vulnerability in Amazon web Services Freertos and Freertos
An issue was discovered in Amazon Web Services (AWS) FreeRTOS through 1.3.1, FreeRTOS up to V10.0.1 (with FreeRTOS+TCP), and WITTENSTEIN WHIS Connect middleware TCP/IP component.
network
amazon CWE-191
6.8
2018-12-06 CVE-2018-16600 Information Exposure vulnerability in Amazon web Services Freertos and Freertos
An issue was discovered in Amazon Web Services (AWS) FreeRTOS through 1.3.1, FreeRTOS up to V10.0.1 (with FreeRTOS+TCP), and WITTENSTEIN WHIS Connect middleware TCP/IP component.
network
amazon CWE-200
4.3
2018-12-06 CVE-2018-16599 Information Exposure vulnerability in Amazon web Services Freertos and Freertos
An issue was discovered in Amazon Web Services (AWS) FreeRTOS through 1.3.1, FreeRTOS up to V10.0.1 (with FreeRTOS+TCP), and WITTENSTEIN WHIS Connect middleware TCP/IP component.
network
amazon CWE-200
4.3
2018-12-06 CVE-2018-16598 Confused Deputy vulnerability in Amazon web Services Freertos and Freertos
An issue was discovered in Amazon Web Services (AWS) FreeRTOS through 1.3.1, FreeRTOS up to V10.0.1 (with FreeRTOS+TCP), and WITTENSTEIN WHIS Connect middleware TCP/IP component.
network
amazon CWE-441
4.3
2018-12-06 CVE-2018-16528 Improper Input Validation vulnerability in Amazon web Services Freertos
Amazon Web Services (AWS) FreeRTOS through 1.3.1 allows remote attackers to execute arbitrary code because of mbedTLS context object corruption in prvSetupConnection and GGD_SecureConnect_Connect in AWS TLS connectivity modules.
network
amazon CWE-20
6.8
2018-12-06 CVE-2018-16527 Information Exposure vulnerability in Amazon web Services Freertos and Freertos
Amazon Web Services (AWS) FreeRTOS through 1.3.1, FreeRTOS up to V10.0.1 (with FreeRTOS+TCP), and WITTENSTEIN WHIS Connect middleware TCP/IP component allow information disclosure during parsing of ICMP packets in prvProcessICMPPacket.
network
amazon CWE-200
4.3
2018-12-06 CVE-2018-16526 Unspecified vulnerability in Amazon web Services Freertos and Freertos
Amazon Web Services (AWS) FreeRTOS through 1.3.1, FreeRTOS up to V10.0.1 (with FreeRTOS+TCP), and WITTENSTEIN WHIS Connect middleware TCP/IP component allow remote attackers to leak information or execute arbitrary code because of a Buffer Overflow during generation of a protocol checksum in usGenerateProtocolChecksum and prvProcessIPPacket.
network
amazon
6.8
2018-12-06 CVE-2018-16525 Unspecified vulnerability in Amazon web Services Freertos and Freertos
Amazon Web Services (AWS) FreeRTOS through 1.3.1, FreeRTOS up to V10.0.1 (with FreeRTOS+TCP), and WITTENSTEIN WHIS Connect middleware TCP/IP component allow remote attackers to execute arbitrary code or leak information because of a Buffer Overflow during parsing of DNS\LLMNR packets in prvParseDNSReply.
network
amazon
6.8
2018-12-06 CVE-2018-16524 Information Exposure vulnerability in Amazon web Services Freertos and Freertos
Amazon Web Services (AWS) FreeRTOS through 1.3.1, FreeRTOS up to V10.0.1 (with FreeRTOS+TCP), and WITTENSTEIN WHIS Connect middleware TCP/IP component allow information disclosure during parsing of TCP options in prvCheckOptions.
network
amazon CWE-200
4.3