Vulnerabilities > Amazon
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-04-04 | CVE-2018-19981 | Cleartext Storage of Sensitive Information vulnerability in Amazon AWS Software Development KIT Amazon AWS SDK <=2.8.5 for Android uses Android SharedPreferences to store plain text AWS STS Temporary Credentials retrieved by AWS Cognito Identity Service. | 9.0 |
| 2019-03-01 | CVE-2019-9483 | Inadequate Encryption Strength vulnerability in Amazon Ring Video Doorbell Firmware Amazon Ring Doorbell before 3.4.7 mishandles encryption, which allows attackers to obtain audio and video data, or insert spoofed video that does not correspond to the actual person at the door. | 6.4 |
| 2019-02-17 | CVE-2019-7399 | Origin Validation Error vulnerability in Amazon Fire OS 5.3.6.3 Amazon Fire OS before 5.3.6.4 allows a man-in-the-middle attack against HTTP requests for "Terms of Use" and Privacy pages. | 5.8 |
| 2018-12-06 | CVE-2018-16603 | Information Exposure vulnerability in Amazon web Services Freertos and Freertos An issue was discovered in Amazon Web Services (AWS) FreeRTOS through 1.3.1, FreeRTOS up to V10.0.1 (with FreeRTOS+TCP), and WITTENSTEIN WHIS Connect middleware TCP/IP component. | 4.3 |
| 2018-12-06 | CVE-2018-16602 | Information Exposure vulnerability in Amazon web Services Freertos and Freertos An issue was discovered in Amazon Web Services (AWS) FreeRTOS through 1.3.1, FreeRTOS up to V10.0.1 (with FreeRTOS+TCP), and WITTENSTEIN WHIS Connect middleware TCP/IP component. | 4.3 |
| 2018-12-06 | CVE-2018-16601 | Integer Underflow (Wrap or Wraparound) vulnerability in Amazon web Services Freertos and Freertos An issue was discovered in Amazon Web Services (AWS) FreeRTOS through 1.3.1, FreeRTOS up to V10.0.1 (with FreeRTOS+TCP), and WITTENSTEIN WHIS Connect middleware TCP/IP component. | 6.8 |
| 2018-12-06 | CVE-2018-16600 | Information Exposure vulnerability in Amazon web Services Freertos and Freertos An issue was discovered in Amazon Web Services (AWS) FreeRTOS through 1.3.1, FreeRTOS up to V10.0.1 (with FreeRTOS+TCP), and WITTENSTEIN WHIS Connect middleware TCP/IP component. | 4.3 |
| 2018-12-06 | CVE-2018-16599 | Information Exposure vulnerability in Amazon web Services Freertos and Freertos An issue was discovered in Amazon Web Services (AWS) FreeRTOS through 1.3.1, FreeRTOS up to V10.0.1 (with FreeRTOS+TCP), and WITTENSTEIN WHIS Connect middleware TCP/IP component. | 4.3 |
| 2018-12-06 | CVE-2018-16598 | Confused Deputy vulnerability in Amazon web Services Freertos and Freertos An issue was discovered in Amazon Web Services (AWS) FreeRTOS through 1.3.1, FreeRTOS up to V10.0.1 (with FreeRTOS+TCP), and WITTENSTEIN WHIS Connect middleware TCP/IP component. | 4.3 |
| 2018-12-06 | CVE-2018-16528 | Improper Input Validation vulnerability in Amazon web Services Freertos Amazon Web Services (AWS) FreeRTOS through 1.3.1 allows remote attackers to execute arbitrary code because of mbedTLS context object corruption in prvSetupConnection and GGD_SecureConnect_Connect in AWS TLS connectivity modules. | 6.8 |