| 637 |
EastWest |
Concurrent Session Management |
Operational Requirement |
Moderate |
N/A |
Approved |
Operational Requirement Justification Limiting the number of... |
6/12/2025 |
06/12/2026 |
| 644 |
EastWest |
Malicious Code Protection / Malicious Code Protect... |
Operational Requirement |
Low |
N/A |
Approved |
Operational Requirement Justification AWS has determined tha... |
6/12/2025 |
06/12/2026 |
| 1210 |
EastWest |
Username Enumeration |
Risk Adjustment and Operational Requirement |
Moderate |
Moderate |
Approved |
Justification for the request: Limitations preventing the id... |
6/12/2025 |
06/12/2026 |
| 1787 |
EastWest |
SSL Certificate with Wrong Hostname |
Operational Requirement |
Moderate |
N/A |
Approved |
Operational Impact Statement: AWS currently utilize self-sig... |
6/12/2025 |
06/12/2026 |
| 1789 |
EastWest |
SSL Certificate Signed Using Weak Hashing Algorith... |
Risk Adjustment |
Low |
Low |
Approved |
Operational Impact Statement: AWS currently utilize self-sig... |
6/12/2025 |
06/12/2026 |
| 1806 |
EastWest |
SSL Certificate Cannot Be Trusted |
Operational Requirement |
Moderate |
N/A |
Approved |
Operational Impact Statement: All affected hosts are all bac... |
6/12/2025 |
06/12/2026 |
| 1807 |
EastWest |
SSL Self-Signed Certificate |
Operational Requirement |
Moderate |
N/A |
Approved |
Operational Impact Statement: All affected hosts are all bac... |
6/12/2025 |
06/12/2026 |
| 1808 |
EastWest |
SSL Medium Strength Cipher Suites Supported (SWEET... |
Risk Adjustment |
Low |
Low |
Approved |
Deviation Request Rationale: AWS has this finding rated with... |
6/12/2025 |
06/12/2026 |
| 1813 |
EastWest |
TLS Version 1.0 (104743) /1.1 (157288) Protocol De... |
Operational Requirement |
Moderate |
N/A |
Approved |
Justification for this request: We are writing to provide ju... |
2/10/2025 |
02/12/2026 |
| 2259 |
EastWest |
HSTS Missing From HTTPS Server (RFC 6797) |
Operational Requirement |
Moderate |
N/A |
Approved |
Operational Impact Statement: All of the hosts identified in... |
6/12/2025 |
06/12/2026 |
| 2971 |
EastWest |
JQuery 1.2 < 3.5.0 Multiple XSS |
Operational Requirement |
Moderate |
N/A |
Approved |
Operational Impact Statement: This finding is associated wit... |
6/12/2025 |
06/12/2026 |
| 3550 |
EastWest |
Architecture and Provisioning for Name/Address Res... |
Operational Requirement |
Low |
N/A |
Approved |
AWS OR Rationale: DNSSEC (SC-20 and SC-21): Alternative Cont... |
05/14/2025 |
05/12/2026 |
| 3556 |
EastWest |
Vulnerable Third-Party Libraries |
Operational Requirement |
Low |
N/A |
Approved |
Operational Requirement Justification: The Workdocs web clie... |
1/15/2024 |
01/12/2025 |
| 6767 |
EastWest |
Sensitive Information Disclosure Through Screensho... |
Operational Requirement |
Moderate |
N/A |
Approved |
Justification for this request: Chime Android application wh... |
6/12/2025 |
06/12/2026 |
| 6777 |
EastWest |
External Connections – TLS 1.0 / 1.1 Deprecation |
Operational Requirement |
Low |
N/A |
Approved |
AWS OR Background: We are globally complete with the depreca... |
6/12/2025 |
06/12/2026 |
| 6790 |
EastWest |
Usage of Browser Local Storage to Store Authentica... |
Operational Requirement |
Low |
N/A |
Approved |
Justification for this request: Storage of the authenticatio... |
6/12/2025 |
06/12/2026 |
| 6802 |
EastWest |
User Account Enumeration (KMS) |
Operational Requirement |
Low |
N/A |
Approved |
Justification for the request: This is intended functionalit... |
6/12/2025 |
06/12/2026 |
| 17029 |
EastWest |
IVS JUNIPER VULNS 15.1 |
Risk Adjustment and Operational Requirement |
Moderate |
Moderate |
Approved |
AWS Operational Impact Statement: Upgrades of JunOS on Outpo... |
12/14/2023 |
12/12/2024 |
| 19780 |
EastWest |
Authentication Token in URL (Chime) |
Operational Requirement |
Low |
N/A |
Approved |
Justification for this request: Storage of the authenticatio... |
01/08/2026 |
01/12/2027 |
| 19781 |
EastWest |
Kinesis Analytics Application Remains in Updating ... |
Operational Requirement |
Low |
N/A |
Approved |
Justification for this request: Checked the logs for the APP... |
6/12/2025 |
06/12/2026 |
| 19782 |
EastWest |
User Pool and Stack Quota Bypass (AppStream 2.0) |
Operational Requirement |
Low |
N/A |
Approved |
Justification for this request: We designed the system to al... |
6/12/2025 |
06/12/2026 |
| 19784 |
EastWest |
Sensitive Information Exposure Via Calls Made by U... |
Operational Requirement |
Low |
N/A |
Approved |
Justification for this request: The POST request in the pene... |
6/12/2025 |
06/12/2026 |
| 19787 |
EastWest |
Quota Bypass (Amazon Virtual Private Cloud) |
Operational Requirement |
Low |
N/A |
Approved |
Justification for this request: After further inspection thi... |
6/12/2025 |
06/12/2026 |
| 21763 |
EastWest |
Strict transport security not enforced |
Operational Requirement |
Low |
N/A |
Approved |
Deviation Request Rationale: The GET request to the affected... |
6/12/2025 |
06/12/2026 |
| 27674 |
EastWest |
SSH Terrapin Prefix Truncation Weakness (CVE-2023-... |
Risk Adjustment |
Low |
Low |
Approved |
AWS Risk Adjustment Rationale: All impacted hosts sit within... |
6/12/2025 |
06/12/2026 |
| 39828 |
EastWest |
SSL Certificate Expiry |
Risk Adjustment |
Low |
Low |
Approved |
AWS Risk Adjustment Rationale All impacted hosts sit within ... |
11/14/2024 |
11/12/2025 |
| 39831 |
EastWest |
SSL RC4 Cipher Suites Supported (Bar Mitzvah) |
Risk Adjustment |
Low |
Low |
Approved |
AWS Risk Adjustment Rationale All impacted hosts sit within ... |
11/14/2024 |
11/12/2025 |
| 39833 |
EastWest |
SSH Weak Algorithms Supported |
Risk Adjustment |
Low |
Low |
Approved |
AWS Risk Adjustment Rationale As per the description, the us... |
11/14/2024 |
11/12/2025 |
| 43803 |
EastWest |
Vulnerability Scanning Gap (RA-5) |
Operational Requirement |
Low |
N/A |
Approved |
Justification for this request: AWS Customer Compliance Guid... |
9/13/2024 |
09/12/2025 |
| 46073 |
EastWest |
IVS JUNIPER VULNS 22.2 |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS Risk Adjustment Justification: AWS and Juniper have not ... |
1/10/2025 |
01/12/2026 |
| 47775 |
EastWest |
Configuration Settings |
Operational Requirement |
Low |
N/A |
Approved |
Deviation Request Information: Background AWS alternative ch... |
7/9/2025 |
07/12/2026 |
| 47776 |
EastWest |
Configuration Settings |
Operational Requirement |
Low |
N/A |
Approved |
Deviation Request Information: Background AWS alternative ch... |
7/9/2025 |
07/12/2026 |
| 51130 |
EastWest |
IVS JUNIPER VULNS 18.4 |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS Risk Adjustment Justification AWS is working with custom... |
12/16/2024 |
12/12/2025 |
| 51131 |
EastWest |
IVS JUNIPER VULNS 20.3 |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS Risk Adjustment Justification: AWS and Juniper have not ... |
1/10/2025 |
01/12/2026 |
| 51132 |
EastWest |
IVS JUNIPER VULNS 21.4 |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS Risk Adjustment Justification: AWS and Juniper have not ... |
1/10/2025 |
01/12/2026 |
| 51133 |
EastWest |
IVS JUNIPER VULNS 22.4 |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS Risk Adjustment Justification: AWS and Juniper have not ... |
1/10/2025 |
01/12/2026 |
| 55823 |
EastWest |
IVS JUNIPER VULNS 12.3 |
Risk Adjustment and Operational Requirement |
Moderate |
Moderate |
Approved |
AWS Operational Impact Statement: Early decommission of Juno... |
04/03/2025 |
04/12/2026 |
| 55826 |
EastWest |
IVS JUNIPER VULNS 19.4 |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS Risk Adjustment Justification: AWS evaluates each new CV... |
2/10/2025 |
02/12/2026 |
| 55836 |
EastWest |
IVS JUNIPER VULNS 14.1.GROUP2 |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS Risk Adjustment Justification: AWS evaluates each new CV... |
2/10/2025 |
02/12/2026 |
| 62232 |
EastWest |
Open redirection (DOM-based) |
False Positive |
Low |
N/A |
Pending |
The queryArgs variable is defined from the window.location.s... |
|
|
| 62233 |
EastWest |
Link manipulation (DOM-based) |
False Positive |
Low |
N/A |
Pending |
AWS FP Rationale
In the following examples, the injected web... |
|
|
| 68208 |
EastWest |
IVS JUNIPER VULNS 14.1.group4 |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
Deviation Request Rationale: AWS and Juniper have not yet id... |
8/8/2025 |
08/12/2026 |
| 68217 |
EastWest |
IVS JUNIPER VULNS 18.2.group4 |
Risk Adjustment and Operational Requirement |
Moderate |
Moderate |
Approved |
AWS Operational Impact Statement: Early decommission of Juno... |
6/10/2025 |
06/12/2026 |
| 68218 |
EastWest |
IVS JUNIPER VULNS 18.4.group4 |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
Deviation Request Rationale: AWS and Juniper have not yet id... |
8/8/2025 |
08/12/2026 |
| 68219 |
EastWest |
IVS JUNIPER VULNS 20.3.group4 |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
Deviation Request Rationale: AWS and Juniper have not yet id... |
7/9/2025 |
07/12/2026 |
| 68240 |
EastWest |
IVS ALMACH VULNS 20240720.1.group4 |
Risk Adjustment |
Low |
Low |
Approved |
Deviation Request Rationale: 7 network devices running Almac... |
8/8/2025 |
08/12/2026 |
| 68241 |
EastWest |
IVS ALMACH VULNS 20240727.101.group4 |
Risk Adjustment and Operational Requirement |
Moderate |
Moderate |
Approved |
AWS Operational Impact Statement: Early decommission of Alma... |
6/10/2025 |
06/12/2026 |
| 68242 |
EastWest |
IVS ALMACH VULNS 20240810.1.group4 |
Risk Adjustment |
Low |
Low |
Approved |
Deviation Request Rationale: 274 network devices running Alm... |
8/8/2025 |
08/12/2026 |
| 68254 |
EastWest |
IVS ALMACH VULNS 20241215.1.group4 |
Risk Adjustment |
Low |
Low |
Approved |
Deviation Request Rationale: 87 network devices running Alma... |
8/8/2025 |
08/12/2026 |
| 68265 |
EastWest |
IVS JUNIPER VULNS 21.4.group4 |
Operational Requirement |
Moderate |
N/A |
Approved |
AWS Operational Impact Statement: Early decommission of Juno... |
6/10/2025 |
06/12/2026 |
| 69314 |
EastWest |
CVE-2024-26461 - krb5-devel, krb5-libs and 1 more |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has these findings rated with a CVSS score of 4.9. The A... |
6/10/2025 |
06/12/2026 |
| 72101 |
EastWest |
CVE-2025-0395 - glibc |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has these findings rated with a CVSS score of 4.9. The A... |
6/10/2025 |
06/12/2026 |
| 72229 |
EastWest |
CVE-2025-24528 - krb5 |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Pending |
AWS has these findings rated with a CVSS score of 6.5. The A... |
|
|
| 75328 |
EastWest |
IVS JUNIPER VULNS 18.1.group4 |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
Deviation Request Rationale: AWS and Juniper have not yet id... |
8/8/2025 |
08/12/2026 |
| 75329 |
EastWest |
IVS ALMACH VULNS 20250302.1.group4 |
Risk Adjustment |
Low |
Low |
Approved |
Deviation Request Rationale: 250 network devices running Alm... |
10/13/2025 |
10/12/2026 |
| 78905 |
EastWest |
CVE-2024-56406 - libperl5.34, perl |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has this finding rating with a CVSS score of 6.4. The At... |
7/9/2025 |
07/12/2026 |
| 79472 |
EastWest |
CVE-2025-25724 - libarchive-tools, libarchive13 |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has these findings rated with a CVSS score of 6.9. The A... |
03/12/2026 |
03/12/2027 |
| 80197 |
EastWest |
CVE-2022-45939 - emacs, emacs-bin-common and 1 mor... |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has this finding rating with a CVSS score of 6.4.The Att... |
8/8/2025 |
08/12/2026 |
| 80203 |
EastWest |
CVE-2022-48337 - emacs, emacs-bin-common and 1 mor... |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has this finding rating with a CVSS score of 6.9. The At... |
8/8/2025 |
08/12/2026 |
| 80205 |
EastWest |
CVE-2022-48339 - emacs, emacs-bin-common and 1 mor... |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has this finding rating with a CVSS score of 6.4. The At... |
8/8/2025 |
08/12/2026 |
| 80337 |
EastWest |
CVE-2023-28617 - emacs, emacs-bin-common and 1 mor... |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has this finding rating with a CVSS score of 6.4. The At... |
8/8/2025 |
08/12/2026 |
| 83112 |
EastWest |
CVE-2025-1372 - elfutils |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has these findings rated with a CVSS score of 6.5. The A... |
02/10/2026 |
02/12/2027 |
| 83125 |
EastWest |
CVE-2025-21587 - openjdk-11-jdk, openjdk-11-jdk-he... |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has these findings rated with a CVSS score of 6.2. The A... |
8/8/2025 |
08/12/2026 |
| 83542 |
EastWest |
CVE-2025-29087 - libsqlite3-0 |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has these findings rated with a CVSS score of 4.9. The A... |
8/8/2025 |
08/12/2026 |
| 83545 |
EastWest |
CVE-2025-29088 - libsqlite3-0 |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has these findings rated with a CVSS score of 4.9. The A... |
8/8/2025 |
08/12/2026 |
| 83570 |
EastWest |
CVE-2025-3277 - libsqlite3-0 |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has these findings rated with a CVSS score of 6.9. The A... |
12/10/2025 |
12/12/2026 |
| 85501 |
EastWest |
CVE-2023-49502 - ffmpeg, libavcodec58 and 7 more |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has these findings rated with a CVSS score of 6.5. The A... |
9/11/2025 |
09/12/2026 |
| 85506 |
EastWest |
CVE-2023-50010 - ffmpeg, libavcodec58 and 7 more |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has this finding rating with a CVSS score of 6.4. The At... |
9/11/2025 |
09/12/2026 |
| 85514 |
EastWest |
CVE-2023-51793 - ffmpeg, libavcodec58 and 7 more |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has this finding rating with a CVSS score of 6.4. The At... |
9/11/2025 |
09/12/2026 |
| 85515 |
EastWest |
CVE-2023-51794 - ffmpeg, libavcodec58 and 7 more |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has this finding rating with a CVSS score of 6.4. The At... |
9/11/2025 |
09/12/2026 |
| 85518 |
EastWest |
CVE-2023-51798 - ffmpeg, libavcodec58 and 7 more |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has this finding rating with a CVSS score of 6.4. The At... |
9/11/2025 |
09/12/2026 |
| 85991 |
EastWest |
CVE-2024-31578 - ffmpeg, libavcodec58 and 7 more |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has these findings rated with a CVSS score of 4.9. The A... |
9/11/2025 |
09/12/2026 |
| 87029 |
EastWest |
CVE-2025-2176 - libzvbi0, zvbi |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has these findings rated with a CVSS score of 4.6. The A... |
9/11/2025 |
09/12/2026 |
| 87054 |
EastWest |
CVE-2025-2177 - libzvbi0, zvbi |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has these findings rated with a CVSS score of 4.6. The A... |
9/11/2025 |
09/12/2026 |
| 87632 |
EastWest |
CVE-2025-6020 - libpam-modules, libpam-modules-bin... |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has these findings rated with a CVSS score of 6.6. The A... |
9/11/2025 |
09/12/2026 |
| 89731 |
EastWest |
CVE-2025-27614 - git |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has these findings rated with a CVSS score of 6.6. The A... |
10/13/2025 |
10/12/2026 |
| 89749 |
EastWest |
CVE-2025-32462 - sudo |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has these findings rated with a CVSS score of 6.4. The A... |
10/13/2025 |
10/12/2026 |
| 89883 |
EastWest |
CVE-2025-46835 - git |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has these findings rated with a CVSS score of 6.6. The A... |
10/13/2025 |
10/12/2026 |
| 89897 |
EastWest |
CVE-2025-48384 - git |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has these findings rated with a CVSS score of 6.9. The A... |
10/13/2025 |
10/12/2026 |
| 89901 |
EastWest |
CVE-2025-48385 - git |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has these findings rated with a CVSS score of 6.7. The A... |
10/13/2025 |
10/12/2026 |
| 90026 |
EastWest |
IVS JUNIPER VULNS 14.1.group5 |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS and Juniper have not yet identified a secure, stable ver... |
10/13/2025 |
10/12/2026 |
| 90027 |
EastWest |
IVS CISCO VULNS 15.2.group5 |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS and Cisco have not yet identified a secure, stable versi... |
10/13/2025 |
10/12/2026 |
| 90029 |
EastWest |
IVS JUNIPER VULNS 18.1.group5 |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS and Juniper have not yet identified a secure, stable ver... |
10/13/2025 |
10/12/2026 |
| 90030 |
EastWest |
IVS JUNIPER VULNS 18.4.group5 |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS and Juniper have not yet identified a secure, stable ver... |
10/13/2025 |
10/12/2026 |
| 90031 |
EastWest |
IVS JUNIPER VULNS 20.3.group5 |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS and Juniper have not yet identified a secure, stable ver... |
10/13/2025 |
10/12/2026 |
| 90325 |
EastWest |
CVE-2025-1372 - elfutils |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has these findings rated with a CVSS score of 6.5. The A... |
02/10/2026 |
02/12/2027 |
| 90399 |
EastWest |
CVE-2025-48060 - jq |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has this finding rating with a CVSS score of 5.3. The At... |
03/12/2026 |
03/12/2027 |
| 90480 |
EastWest |
IVS ALMACH VULNS 20250302.1.group5 |
Risk Adjustment |
Low |
Low |
Approved |
3 network devices running Almach version 20250302.1.group5 a... |
12/10/2025 |
12/12/2026 |
| 91077 |
EastWest |
CVE-2024-26461 - libgssapi-krb5-2, libk5crypto3 an... |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has these findings rated with a CVSS score of 4.9. The A... |
11/10/2025 |
11/12/2026 |
| 91087 |
EastWest |
CVE-2024-30205 - emacs, emacs-bin-common and 1 mor... |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has this finding rating with a CVSS score of 5.8. The At... |
11/10/2025 |
11/12/2026 |
| 91134 |
EastWest |
CVE-2024-39331 - emacs, emacs-bin-common and 1 mor... |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has these findings rated with a CVSS score of 6.9. The A... |
11/10/2025 |
11/12/2026 |
| 91487 |
EastWest |
CVE-2024-56406 - libperl5.34, perl |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has this finding rating with a CVSS score of 6.4. The At... |
11/10/2025 |
11/12/2026 |
| 91947 |
EastWest |
CVE-2025-5318 - libssh-4 |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has these findings rated with a CVSS score of 5.9. The A... |
11/10/2025 |
11/12/2026 |
| 91949 |
EastWest |
CVE-2025-5372 - libssh-4 |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has these findings rated with a CVSS score of 6.5. The A... |
11/10/2025 |
11/12/2026 |
| 92288 |
EastWest |
Secure HyperText Transfer Protocol (S-HTTP) Detect... |
Risk Adjustment |
Low |
Low |
Pending |
AWS Risk Adjustment
The initial risk rating of Moderate is ... |
|
|
| 92601 |
EastWest |
CVE-2025-8176 - libtiff5 |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has these findings rated with a CVSS score of 6.4. The A... |
02/10/2026 |
02/12/2027 |
| 92621 |
EastWest |
IVS ALMACH VULNS 20240727.101.group5 |
Risk Adjustment |
Low |
Low |
Approved |
83 network devices running Almach version 20240727.101.stabl... |
01/08/2026 |
01/12/2027 |
| 92645 |
EastWest |
Apache Tomcat Default Files |
False Positive |
Moderate |
N/A |
Pending |
AWS False Positive Rationale
The risk presented by this fin... |
|
|
| 93090 |
EastWest |
CVE-2017-17095 - libtiff |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has this finding rating with a CVSS score of 6.7. The At... |
12/10/2025 |
12/12/2026 |
| 93117 |
EastWest |
CVE-2019-12900 - bzip2, bzip2-devel and 1 more |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has these findings rated with a CVSS score of 6.9. The A... |
12/10/2025 |
12/12/2026 |
| 93126 |
EastWest |
CVE-2019-17543 - lz4-libs |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has these findings rated with a CVSS score of 6.9. The A... |
12/10/2025 |
12/12/2026 |
| 93158 |
EastWest |
CVE-2020-13790 - libjpeg-turbo |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has these findings rated with a CVSS score of 6.4. The A... |
12/10/2025 |
12/12/2026 |
| 93312 |
EastWest |
CVE-2022-29500 - libpmi2-0, libslurm37 and 1 more |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has this finding rating with a CVSS score of 6.5. The At... |
12/10/2025 |
12/12/2026 |
| 93313 |
EastWest |
CVE-2022-29501 - libpmi2-0, libslurm37 and 1 more |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has this finding rating with a CVSS score of 6.5. The At... |
12/10/2025 |
12/12/2026 |
| 93314 |
EastWest |
CVE-2022-29502 - libpmi2-0, libslurm37 and 1 more |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has this finding rating with a CVSS score of 6.9. The At... |
12/10/2025 |
12/12/2026 |
| 93319 |
EastWest |
CVE-2022-3109 - ffmpeg, libavcodec58 and 7 more |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has this finding rating with a CVSS score of 4.9. The At... |
12/10/2025 |
12/12/2026 |
| 93351 |
EastWest |
CVE-2022-3964 - ffmpeg, libavcodec58 and 7 more |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has this finding rating with a CVSS score of 5.9. The At... |
12/10/2025 |
12/12/2026 |
| 93400 |
EastWest |
CVE-2022-48434 - ffmpeg, libavcodec58 and 7 more |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has this finding rating with a CVSS score of 6.9. The At... |
12/10/2025 |
12/12/2026 |
| 93491 |
EastWest |
CVE-2023-27349 - bluez-libs |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has these findings rated with a CVSS score of 6.5. The A... |
12/10/2025 |
12/12/2026 |
| 93779 |
EastWest |
CVE-2024-10963 - libpam-modules, libpam-modules-bi... |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has these findings rated with a CVSS score of 6.2. The A... |
12/10/2025 |
12/12/2026 |
| 93785 |
EastWest |
CVE-2024-11403 - jxl-pixbuf-loader, libjxl |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has these findings rated with a CVSS score of 6.9. The A... |
12/10/2025 |
12/12/2026 |
| 93786 |
EastWest |
CVE-2024-11498 - jxl-pixbuf-loader, libjxl |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has these findings rated with a CVSS score of 5.3. The A... |
12/10/2025 |
12/12/2026 |
| 93810 |
EastWest |
CVE-2024-1488 - python3-unbound, unbound-libs |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has this finding rating with a CVSS score of 6.0. The At... |
12/10/2025 |
12/12/2026 |
| 93881 |
EastWest |
CVE-2024-2961 - glibc, glibc-common and 5 more |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has this finding rating with a CVSS score of 5.7. The At... |
12/10/2025 |
12/12/2026 |
| 93895 |
EastWest |
CVE-2024-32230 - ffmpeg, libavcodec58 and 7 more |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has this finding rating with a CVSS score of 6.6. The At... |
12/10/2025 |
12/12/2026 |
| 93943 |
EastWest |
CVE-2024-3651 - idna, idna and 2 more |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has these findings rated with a CVSS score of 5.3. The A... |
12/10/2025 |
12/12/2026 |
| 94260 |
EastWest |
CVE-2024-5171 - libaom0 |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has this finding rating with a CVSS score of 6.4. The At... |
12/10/2025 |
12/12/2026 |
| 94262 |
EastWest |
CVE-2024-52005 - git, git-core and 2 more |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has these findings rated with a CVSS score of 4.4. The A... |
12/10/2025 |
12/12/2026 |
| 94266 |
EastWest |
CVE-2024-52531 - libsoup |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has this finding rating with a CVSS score of 6.8. The At... |
12/10/2025 |
12/12/2026 |
| 94334 |
EastWest |
CVE-2024-53920 - emacs-filesystem |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has these findings rated with a CVSS score of 6.4. The A... |
12/10/2025 |
12/12/2026 |
| 94340 |
EastWest |
CVE-2024-55549 - libxslt |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has this finding rating with a CVSS score of 6.6. The Pr... |
12/10/2025 |
12/12/2026 |
| 94440 |
EastWest |
CVE-2024-9287 - python3.10 |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has this finding rating with a CVSS score of 6.4. The At... |
12/10/2025 |
12/12/2026 |
| 94468 |
EastWest |
CVE-2025-1244 - emacs-filesystem |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has these findings rated with a CVSS score of 6.5. The A... |
12/10/2025 |
12/12/2026 |
| 94481 |
EastWest |
CVE-2025-1594 - ffmpeg |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has this finding rating with a CVSS score of 6.7. The At... |
12/10/2025 |
12/12/2026 |
| 94512 |
EastWest |
CVE-2025-2177 - libzvbi0, zvbi |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has these findings rated with a CVSS score of 4.6. The A... |
12/10/2025 |
12/12/2026 |
| 94663 |
EastWest |
CVE-2025-24855 - libxslt |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has this finding rating with a CVSS score of 6.6. The Pr... |
12/10/2025 |
12/12/2026 |
| 94710 |
EastWest |
CVE-2025-32049 - libsoup |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has this finding rating with a CVSS score of 5.3. The At... |
12/10/2025 |
12/12/2026 |
| 95452 |
EastWest |
CVE-2025-53014 - libmagickcore-6.q16-6 |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has this finding rating with a CVSS score of 6.9. The At... |
12/10/2025 |
12/12/2026 |
| 95454 |
EastWest |
CVE-2025-53101 - libmagickcore-6.q16-6 |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has this finding rating with a CVSS score of 6.9. The At... |
12/10/2025 |
12/12/2026 |
| 95471 |
EastWest |
CVE-2025-55154 - libmagickcore-6.q16-6, libmagickw... |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has these findings rated with a CVSS score of 6.4. The A... |
12/10/2025 |
12/12/2026 |
| 95476 |
EastWest |
CVE-2025-57807 - libmagickcore-6.q16-6, libmagickw... |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has this finding rating with a CVSS score of 6.9. The At... |
12/10/2025 |
12/12/2026 |
| 95478 |
EastWest |
CVE-2025-58060 - cups |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has these findings rated with a CVSS score of 6.3. The A... |
12/10/2025 |
12/12/2026 |
| 95485 |
EastWest |
CVE-2025-5914 - libarchive |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has these findings rated with a CVSS score of 6.4. The A... |
12/10/2025 |
12/12/2026 |
| 95516 |
EastWest |
CVE-2025-6297 - dpkg |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has this finding rating with a CVSS score of 5.9. The At... |
12/10/2025 |
12/12/2026 |
| 95546 |
EastWest |
CVE-2025-8176 - libtiff5 |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has these findings rated with a CVSS score of 6.4. The A... |
12/10/2025 |
12/12/2026 |
| 95566 |
EastWest |
CVE-2025-8941 - pam |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has these findings rated with a CVSS score of 6.6. The A... |
12/10/2025 |
12/12/2026 |
| 95846 |
EastWest |
IVS JUNIPER VULNS 14.1 |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS and Juniper have not yet identified a secure, stable ver... |
12/10/2025 |
12/12/2026 |
| 95850 |
EastWest |
IVS JUNIPER VULNS 18.4 |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS and Juniper have not yet identified a secure, stable ver... |
12/10/2025 |
12/12/2026 |
| 95852 |
EastWest |
IVS JUNIPER VULNS 20.2 |
Risk Adjustment |
Low |
Low |
Approved |
49 network devices running JunOS version 20.2 are currently ... |
01/08/2026 |
01/12/2027 |
| 95853 |
EastWest |
IVS JUNIPER VULNS 20.3 |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS and Juniper have not yet identified a secure, stable ver... |
12/10/2025 |
12/12/2026 |
| 95857 |
EastWest |
IVS CISCO VULNS 12.2.tor |
Risk Adjustment and Vendor Dependency |
Low |
Low |
Approved |
183 network devices running IOS version 12.2 on top of rack ... |
02/10/2026 |
02/12/2027 |
| 95860 |
EastWest |
IVS ALMACH VULNS 20240727.101.tor |
Risk Adjustment |
Low |
Low |
Approved |
13 network devices running Almach version 20240727.101.stabl... |
01/08/2026 |
01/12/2027 |
| 95861 |
EastWest |
IVS JUNIPER VULNS 21.4.tor |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
3 network devices running IOS version 21.4 on top of rack ro... |
02/10/2026 |
02/12/2027 |
| 95865 |
EastWest |
Electron Application Backdoor (Amazon Chime for Wi... |
Risk Adjustment |
Low |
Low |
Approved |
The Risk Adjustment request is due to this vulnerability req... |
12/10/2025 |
12/12/2026 |
| 95866 |
EastWest |
Sensitive Exported Node Modules (Amazon Chime for ... |
Risk Adjustment |
Low |
Low |
Approved |
The Risk Adjustment request is due to this vulnerability req... |
12/10/2025 |
12/12/2026 |
| 96459 |
EastWest |
CVE-2021-4156 - libsndfile1 |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has this finding rating with a CVSS score of 5.4. The At... |
01/08/2026 |
01/12/2027 |
| 97006 |
EastWest |
CVE-2022-49043 - libxml2 |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has this finding rating with a CVSS score of 6.9. The Pr... |
01/08/2026 |
01/12/2027 |
| 97411 |
EastWest |
CVE-2023-6603 - ffmpeg, libavcodec58 and 1 more |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has these findings rated with a CVSS score of 5.3. The A... |
01/08/2026 |
01/12/2027 |
| 97412 |
EastWest |
CVE-2023-6605 - ffmpeg, libavcodec58 and 1 more |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has these findings rated with a CVSS score of 4.7. The A... |
01/08/2026 |
01/12/2027 |
| 97569 |
EastWest |
CVE-2024-34459 - libxml2 |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has these findings rated with a CVSS score of 4.9. The A... |
01/08/2026 |
01/12/2027 |
| 97574 |
EastWest |
CVE-2024-35366 - ffmpeg |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has these findings rated with a CVSS score of 6.2. The A... |
01/08/2026 |
01/12/2027 |
| 97575 |
EastWest |
CVE-2024-35367 - ffmpeg |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has these findings rated with a CVSS score of 6.2. The A... |
01/08/2026 |
01/12/2027 |
| 97576 |
EastWest |
CVE-2024-35368 - ffmpeg |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has these findings rated with a CVSS score of 6.9. The A... |
01/08/2026 |
01/12/2027 |
| 97581 |
EastWest |
CVE-2024-3596 - libgssapi-krb5-2, libk5crypto3 and... |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has this finding rated with a CVSS score of 6.7. The Att... |
01/08/2026 |
01/12/2027 |
| 97899 |
EastWest |
CVE-2024-52533 - glib2 |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has these findings rated with a CVSS score of 6.9. The A... |
01/08/2026 |
01/12/2027 |
| 97963 |
EastWest |
CVE-2024-55549 - libxslt1.1 |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has this finding rating with a CVSS score of 6.6. The Pr... |
01/08/2026 |
01/12/2027 |
| 97967 |
EastWest |
CVE-2024-56171 - libxml2 |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has this finding rating with a CVSS score of 6.6. The Pr... |
01/08/2026 |
01/12/2027 |
| 98053 |
EastWest |
CVE-2024-7055 - ffmpeg |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has these findings rated with a CVSS score of 6.5. The A... |
01/08/2026 |
01/12/2027 |
| 98063 |
EastWest |
CVE-2024-8176 - expat |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has this finding rating with a CVSS score of 5.3. The At... |
01/08/2026 |
01/12/2027 |
| 98068 |
EastWest |
CVE-2024-9287 - python3.10, python3.10-minimal |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has this finding rating with a CVSS score of 6.4. The At... |
01/08/2026 |
01/12/2027 |
| 98080 |
EastWest |
CVE-2025-0840 - binutils, libbinutils |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has this finding rating with a CVSS score of 6.5. The At... |
01/08/2026 |
01/12/2027 |
| 98279 |
EastWest |
CVE-2025-24855 - libxslt1.1 |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has this finding rating with a CVSS score of 6.6. The Pr... |
01/08/2026 |
01/12/2027 |
| 98281 |
EastWest |
CVE-2025-24928 - libxml2 |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has this finding rating with a CVSS score of 6.6. The Pr... |
01/08/2026 |
01/12/2027 |
| 98295 |
EastWest |
CVE-2025-27113 - libxml2 |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has these findings rated with a CVSS score of 4.9. The A... |
01/08/2026 |
01/12/2027 |
| 98304 |
EastWest |
CVE-2025-27614 - git |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has these findings rated with a CVSS score of 6.6. The A... |
01/08/2026 |
01/12/2027 |
| 98311 |
EastWest |
CVE-2025-29088 - libsqlite3-0 |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has these findings rated with a CVSS score of 4.9. The A... |
03/12/2026 |
03/12/2027 |
| 98317 |
EastWest |
CVE-2025-30749 - openjdk-11-jdk, openjdk-11-jdk-he... |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has these findings rated with a CVSS score of 6.4. The A... |
01/08/2026 |
01/12/2027 |
| 98347 |
EastWest |
CVE-2025-32906 - libsoup |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has these findings rated with a CVSS score of 4.9. The A... |
01/08/2026 |
01/12/2027 |
| 98354 |
EastWest |
CVE-2025-32911 - libsoup |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has these findings rated with a CVSS score of 6.9. The A... |
01/08/2026 |
01/12/2027 |
| 98356 |
EastWest |
CVE-2025-32913 - libsoup |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has these findings rated with a CVSS score of 4.9. The A... |
01/08/2026 |
01/12/2027 |
| 98357 |
EastWest |
CVE-2025-32914 - libsoup |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has these findings rated with a CVSS score of 6.2. The A... |
01/08/2026 |
01/12/2027 |
| 98727 |
EastWest |
CVE-2025-46835 - git |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has these findings rated with a CVSS score of 6.6. The A... |
01/08/2026 |
01/12/2027 |
| 98741 |
EastWest |
CVE-2025-48384 - git |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has these findings rated with a CVSS score of 6.9. The A... |
01/08/2026 |
01/12/2027 |
| 98744 |
EastWest |
CVE-2025-48385 - git |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has these findings rated with a CVSS score of 6.7. The A... |
01/08/2026 |
01/12/2027 |
| 98757 |
EastWest |
CVE-2025-4948 - libsoup |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has these findings rated with a CVSS score of 5.3. The A... |
01/08/2026 |
01/12/2027 |
| 98764 |
EastWest |
CVE-2025-49794 - libxml2 |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has these findings rated with a CVSS score of 6.2. The A... |
01/08/2026 |
01/12/2027 |
| 98768 |
EastWest |
CVE-2025-49796 - libxml2 |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has these findings rated with a CVSS score of 6.2. The A... |
01/08/2026 |
01/12/2027 |
| 98769 |
EastWest |
CVE-2025-50059 - openjdk-11-jdk, openjdk-11-jdk-he... |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has these findings rated with a CVSS score of 6.1. The A... |
01/08/2026 |
01/12/2027 |
| 98771 |
EastWest |
CVE-2025-50106 - openjdk-11-jdk, openjdk-11-jdk-he... |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has these findings rated with a CVSS score of 6.1. The A... |
01/08/2026 |
01/12/2027 |
| 98820 |
EastWest |
CVE-2025-55298 - libmagickcore-6.q16-3, libmagickw... |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has these findings rated with a CVSS score of 6.5. The A... |
01/08/2026 |
01/12/2027 |
| 98822 |
EastWest |
CVE-2025-57803 - libmagickcore-6.q16-3, libmagickw... |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has these findings rated with a CVSS score of 6.5. The A... |
01/08/2026 |
01/12/2027 |
| 98860 |
EastWest |
CVE-2025-6021 - libxml2 |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has these findings rated with a CVSS score of 4.9. The A... |
01/08/2026 |
01/12/2027 |
| 98887 |
EastWest |
CVE-2025-7345 - gdk-pixbuf2 |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has these findings rated with a CVSS score of 5.3. The A... |
01/08/2026 |
01/12/2027 |
| 98908 |
EastWest |
CVE-2025-8176 - libtiff5 |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has these findings rated with a CVSS score of 6.4. The A... |
02/10/2026 |
02/12/2027 |
| 98913 |
EastWest |
CVE-2025-8194 - libpython3.10, python3.10 |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has these findings rated with a CVSS score of 4.9. The A... |
01/08/2026 |
01/12/2027 |
| 98940 |
EastWest |
CVE-2025-9230 - libssl1.1, openssl |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has these findings rated with a CVSS score of 5.3. The A... |
01/08/2026 |
01/12/2027 |
| 98957 |
EastWest |
CVE-2025-9900 - libtiff5 |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has these findings rated with a CVSS score of 6.5. The A... |
01/08/2026 |
01/12/2027 |
| 99571 |
EastWest |
HTTP TRACE / TRACK Methods Allowed |
False Positive |
Moderate |
N/A |
Pending |
AWS False Positive Rationale
The CVE listed on plugin #1121... |
|
|
| 99576 |
EastWest |
PostgreSQL 13.x < 13.23 / 14.x < 14.20 / 15.x < 15... |
False Positive |
Moderate |
N/A |
Pending |
The weakness source identifier, 275842, is a Nessus plugin w... |
|
|
| 101626 |
EastWest |
CVE-2024-3596 - libgssapi-krb5-2, libk5crypto3 and... |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has this finding rated with a CVSS score of 6.7. The Att... |
02/10/2026 |
02/12/2027 |
| 102788 |
EastWest |
CVE-2024-56171 - libxml2 |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has this finding rating with a CVSS score of 6.6. The Pr... |
02/10/2026 |
02/12/2027 |
| 102794 |
EastWest |
CVE-2024-56406 - libperl5.34, perl |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has this finding rating with a CVSS score of 6.4. The At... |
02/10/2026 |
02/12/2027 |
| 103105 |
EastWest |
CVE-2024-8176 - expat, libexpat1 |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has this finding rating with a CVSS score of 5.3. The At... |
02/10/2026 |
02/12/2027 |
| 103111 |
EastWest |
CVE-2024-9287 - python3.10, python3.10-minimal |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has this finding rating with a CVSS score of 6.4. The At... |
02/10/2026 |
02/12/2027 |
| 103117 |
EastWest |
CVE-2025-0395 - libc-bin, libc-dev-bin and 3 more |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has these findings rated with a CVSS score of 4.9. The A... |
02/10/2026 |
02/12/2027 |
| 103132 |
EastWest |
CVE-2025-11021 - libsoup |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has these findings rated with a CVSS score of 5.3. The A... |
02/10/2026 |
02/12/2027 |
| 103138 |
EastWest |
CVE-2025-11082 - binutils, libbinutils and 2 more |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has these findings rated with a CVSS score of 6.5. The A... |
02/10/2026 |
02/12/2027 |
| 103143 |
EastWest |
CVE-2025-11083 - binutils, libbinutils and 2 more |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has these findings rated with a CVSS score of 6.5. The A... |
02/10/2026 |
02/12/2027 |
| 103188 |
EastWest |
CVE-2025-1372 - elfutils |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has these findings rated with a CVSS score of 6.5. The A... |
02/10/2026 |
02/12/2027 |
| 103582 |
EastWest |
CVE-2025-24528 - libgssapi-krb5-2, libk5crypto3 an... |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Pending |
AWS has these findings rated with a CVSS score of 6.5. The A... |
|
|
| 103587 |
EastWest |
CVE-2025-24928 - libxml2 |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has this finding rating with a CVSS score of 6.6. The Pr... |
02/10/2026 |
02/12/2027 |
| 103597 |
EastWest |
CVE-2025-27113 - libxml2 |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has these findings rated with a CVSS score of 4.9. The A... |
02/10/2026 |
02/12/2027 |
| 104060 |
EastWest |
CVE-2025-46835 - git |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has these findings rated with a CVSS score of 6.6. The A... |
02/10/2026 |
02/12/2027 |
| 104073 |
EastWest |
CVE-2025-48384 - git |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has these findings rated with a CVSS score of 6.9. The A... |
02/10/2026 |
02/12/2027 |
| 104108 |
EastWest |
CVE-2025-5244 - binutils, libbinutils and 2 more |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has these findings rated with a CVSS score of 6.5. The A... |
02/10/2026 |
02/12/2027 |
| 104113 |
EastWest |
CVE-2025-5245 - binutils, libbinutils and 2 more |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has these findings rated with a CVSS score of 6.5. The A... |
02/10/2026 |
02/12/2027 |
| 104132 |
EastWest |
CVE-2025-53066 - openjdk-11-jdk, openjdk-11-jdk-he... |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has these findings rated with a CVSS score of 5.3. The A... |
02/10/2026 |
02/12/2027 |
| 104168 |
EastWest |
CVE-2025-5914 - libarchive13 |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has these findings rated with a CVSS score of 6.4. The A... |
02/10/2026 |
02/12/2027 |
| 104178 |
EastWest |
CVE-2025-59375 - expat |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has these findings rated with a CVSS score of 5.3. The A... |
02/10/2026 |
02/12/2027 |
| 104214 |
EastWest |
CVE-2025-62171 - libmagickcore-6.q16-6 |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has these findings rated with a CVSS score of 5.3. The A... |
02/10/2026 |
02/12/2027 |
| 104246 |
EastWest |
CVE-2025-7545 - binutils, libbinutils and 2 more |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has these findings rated with a CVSS score of 6.5. The A... |
02/10/2026 |
02/12/2027 |
| 104250 |
EastWest |
CVE-2025-7546 - binutils, libbinutils and 2 more |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has these findings rated with a CVSS score of 6.5. The A... |
02/10/2026 |
02/12/2027 |
| 104333 |
EastWest |
CVE-2025-9900 - libtiff5 |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has these findings rated with a CVSS score of 6.5. The A... |
02/10/2026 |
02/12/2027 |
| 105266 |
EastWest |
IVS JUNIPER VULNS 21.2 |
Risk Adjustment |
Low |
Low |
Pending |
1 network devices running 21.2 is currently blocked from rec... |
|
|
| 105267 |
EastWest |
JWT signature not verified |
False Positive |
High |
N/A |
Pending |
AWS FP Rationale
The server does not validate the JSON Web T... |
|
|
| 106210 |
EastWest |
CVE-2022-29458 - ncurses, ncurses-base and 1 more |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has these findings rated with a CVSS score of 6.7. The A... |
03/12/2026 |
03/12/2027 |
| 106211 |
EastWest |
CVE-2022-29500 - libpmi2-0, libslurm37 and 1 more |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has this finding rating with a CVSS score of 6.5. The At... |
03/12/2026 |
03/12/2027 |
| 106212 |
EastWest |
CVE-2022-29501 - libpmi2-0, libslurm37 and 1 more |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has this finding rating with a CVSS score of 6.5. The At... |
03/12/2026 |
03/12/2027 |
| 106213 |
EastWest |
CVE-2022-29502 - libpmi2-0, libslurm37 and 1 more |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has this finding rating with a CVSS score of 6.9. The At... |
03/12/2026 |
03/12/2027 |
| 106558 |
EastWest |
CVE-2023-4752 - vim-filesystem, vim-minimal |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has these findings rated with a CVSS score of 6.7. The A... |
03/12/2026 |
03/12/2027 |
| 107548 |
EastWest |
CVE-2024-52533 - glib2 |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has these findings rated with a CVSS score of 6.9. The A... |
03/12/2026 |
03/12/2027 |
| 107755 |
EastWest |
CVE-2024-8176 - expat |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has this finding rating with a CVSS score of 5.3. The At... |
03/12/2026 |
03/12/2027 |
| 107777 |
EastWest |
CVE-2025-11082 - binutils, libbinutils and 2 more |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has these findings rated with a CVSS score of 6.5. The A... |
03/12/2026 |
03/12/2027 |
| 107780 |
EastWest |
CVE-2025-11083 - binutils |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has these findings rated with a CVSS score of 6.5. The A... |
03/12/2026 |
03/12/2027 |
| 107988 |
EastWest |
CVE-2025-25724 - libarchive |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has these findings rated with a CVSS score of 6.9. The A... |
03/12/2026 |
03/12/2027 |
| 107996 |
EastWest |
CVE-2025-27363 - freetype |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has this finding rating with a CVSS score of 6.4. The At... |
03/12/2026 |
03/12/2027 |
| 108021 |
EastWest |
CVE-2025-32414 - libxml2 |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has this finding rating with a CVSS score of 5.3. The At... |
03/12/2026 |
03/12/2027 |
| 108023 |
EastWest |
CVE-2025-32415 - libxml2 |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has this finding rating with a CVSS score of 5.3. The At... |
03/12/2026 |
03/12/2027 |
| 108025 |
EastWest |
CVE-2025-32462 - sudo |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has these findings rated with a CVSS score of 6.4. The A... |
03/12/2026 |
03/12/2027 |
| 108037 |
EastWest |
CVE-2025-32988 - gnutls |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has these findings rated with a CVSS score of 5.4. The A... |
03/12/2026 |
03/12/2027 |
| 108044 |
EastWest |
CVE-2025-32990 - gnutls |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has these findings rated with a CVSS score of 5.4. The A... |
03/12/2026 |
03/12/2027 |
| 108446 |
EastWest |
CVE-2025-4138 - python3, python3-libs |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has these findings rated with a CVSS score of 5.3. The A... |
03/12/2026 |
03/12/2027 |
| 108455 |
EastWest |
CVE-2025-4330 - python3, python3-libs |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has these findings rated with a CVSS score of 5.3. The A... |
03/12/2026 |
03/12/2027 |
| 108483 |
EastWest |
CVE-2025-4435 - python3, python3-libs |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has these findings rated with a CVSS score of 6.5. The A... |
03/12/2026 |
03/12/2027 |
| 108487 |
EastWest |
CVE-2025-4517 - python3, python3-libs |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has these findings rated with a CVSS score of 6.5. The A... |
03/12/2026 |
03/12/2027 |
| 108501 |
EastWest |
CVE-2025-47273 - platform-python-setuptools, pytho... |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has these findings rated with a CVSS score of 6.5. The A... |
03/12/2026 |
03/12/2027 |
| 108507 |
EastWest |
CVE-2025-4802 - glibc, glibc-common and 1 more |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has these findings rated with a CVSS score of 6.6. The A... |
03/12/2026 |
03/12/2027 |
| 108509 |
EastWest |
CVE-2025-48060 - jq |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has this finding rating with a CVSS score of 5.3. The At... |
03/12/2026 |
03/12/2027 |
| 108527 |
EastWest |
CVE-2025-49794 - libxml2 |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has these findings rated with a CVSS score of 6.2. The A... |
03/12/2026 |
03/12/2027 |
| 108531 |
EastWest |
CVE-2025-49796 - libxml2 |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has these findings rated with a CVSS score of 6.2. The A... |
03/12/2026 |
03/12/2027 |
| 108541 |
EastWest |
CVE-2025-5244 - binutils, libbinutils and 2 more |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has these findings rated with a CVSS score of 6.5. The A... |
03/12/2026 |
03/12/2027 |
| 108544 |
EastWest |
CVE-2025-5245 - binutils, libbinutils and 2 more |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has these findings rated with a CVSS score of 6.5. The A... |
03/12/2026 |
03/12/2027 |
| 108557 |
EastWest |
CVE-2025-5318 - libssh, libssh-config |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has these findings rated with a CVSS score of 5.9. The A... |
03/12/2026 |
03/12/2027 |
| 108599 |
EastWest |
CVE-2025-5914 - libarchive |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has these findings rated with a CVSS score of 6.4. The A... |
03/12/2026 |
03/12/2027 |
| 108601 |
EastWest |
CVE-2025-59375 - expat |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has these findings rated with a CVSS score of 5.3. The A... |
03/12/2026 |
03/12/2027 |
| 108606 |
EastWest |
CVE-2025-5987 - libssh, libssh-config |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has these findings rated with a CVSS score of 6.9. The A... |
03/12/2026 |
03/12/2027 |
| 108611 |
EastWest |
CVE-2025-6020 - libpam-modules, libpam-modules-bin... |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has these findings rated with a CVSS score of 6.6. The A... |
03/12/2026 |
03/12/2027 |
| 108614 |
EastWest |
CVE-2025-6021 - libxml2 |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has these findings rated with a CVSS score of 4.9. The A... |
03/12/2026 |
03/12/2027 |
| 108648 |
EastWest |
CVE-2025-6297 - dpkg |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has this finding rating with a CVSS score of 5.9. The At... |
03/12/2026 |
03/12/2027 |
| 108666 |
EastWest |
CVE-2025-64720 - libpng16-16 |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has this finding rating with a CVSS score of 5.4. The At... |
03/12/2026 |
03/12/2027 |
| 108670 |
EastWest |
CVE-2025-65018 - libpng16-16 |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has this finding rating with a CVSS score of 6.4. The At... |
03/12/2026 |
03/12/2027 |
| 108679 |
EastWest |
CVE-2025-66418 - python3-urllib3, urllib3 |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has this finding rating with a CVSS score of 5.3. The At... |
03/12/2026 |
03/12/2027 |
| 108686 |
EastWest |
CVE-2025-6965 - libsqlite3-0 |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has these findings rated with a CVSS score of 6.4. The A... |
03/12/2026 |
03/12/2027 |
| 108693 |
EastWest |
CVE-2025-7425 - libxml2 |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has these findings rated with a CVSS score of 6.6. The P... |
03/12/2026 |
03/12/2027 |
| 108698 |
EastWest |
CVE-2025-7545 - binutils, libbinutils and 2 more |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has these findings rated with a CVSS score of 6.5. The A... |
03/12/2026 |
03/12/2027 |
| 108715 |
EastWest |
CVE-2025-8194 - libpython3.10, python3.10 |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has these findings rated with a CVSS score of 4.9. The A... |
03/12/2026 |
03/12/2027 |
| 108733 |
EastWest |
CVE-2025-8941 - pam |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has these findings rated with a CVSS score of 6.6. The A... |
03/12/2026 |
03/12/2027 |
| 108738 |
EastWest |
CVE-2025-9086 - curl, curl/libcurl and 1 more |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has this finding rating with a CVSS score of 5.3. The At... |
03/12/2026 |
03/12/2027 |
| 108739 |
EastWest |
CVE-2025-9086 - curl, libcurl |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has this finding rating with a CVSS score of 5.3. The At... |
03/12/2026 |
03/12/2027 |
| 108743 |
EastWest |
CVE-2025-9230 - libssl1.1, openssl |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS has these findings rated with a CVSS score of 5.3. The A... |
03/12/2026 |
03/12/2027 |
| 110590 |
EastWest |
CVE-2021-46848 - libtasn1-6 |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Pending |
AWS has these findings rated with a CVSS score of 6.8. The A... |
|
|
| 110795 |
EastWest |
CVE-2022-49043 - libxml2 |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Pending |
AWS has this finding rating with a CVSS score of 6.9. The Pr... |
|
|
| 110796 |
EastWest |
CVE-2022-49043 - libxml2 |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Pending |
AWS has this finding rating with a CVSS score of 6.9. The Pr... |
|
|
| 110816 |
EastWest |
CVE-2022-49698 - linux-libc-dev |
False Positive |
High |
N/A |
Pending |
AWS False Positive Rationale
Containers use the host operati... |
|
|
| 110817 |
EastWest |
CVE-2022-49698 - linux-libc-dev |
False Positive |
High |
N/A |
Pending |
AWS False Positive Rationale
Containers use the host operati... |
|
|
| 110899 |
EastWest |
CVE-2023-25193 - libharfbuzz0b |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Pending |
AWS has these findings rated with a CVSS score of 4.9. The A... |
|
|
| 111180 |
EastWest |
CVE-2023-53292 - kernel-headers |
False Positive |
Moderate |
N/A |
Pending |
AWS False Positive Rationale
Containers use the host operati... |
|
|
| 111313 |
EastWest |
CVE-2024-26461 - libgssapi-krb5-2, libgssrpc4 and ... |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Pending |
AWS has these findings rated with a CVSS score of 4.9. The A... |
|
|
| 111490 |
EastWest |
CVE-2024-34459 - libxml2 |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Pending |
AWS has these findings rated with a CVSS score of 4.9. The A... |
|
|
| 111491 |
EastWest |
CVE-2024-34459 - libxml2 |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Pending |
AWS has these findings rated with a CVSS score of 4.9. The A... |
|
|
| 112087 |
EastWest |
CVE-2024-52533 - glib2 |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Pending |
AWS has these findings rated with a CVSS score of 6.9. The A... |
|
|
| 112166 |
EastWest |
CVE-2024-56171 - libxml2 |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Pending |
AWS has this finding rating with a CVSS score of 6.6. The Pr... |
|
|
| 112273 |
EastWest |
CVE-2024-58098 - kernel-headers |
False Positive |
Moderate |
N/A |
Pending |
AWS False Positive Rationale
Containers use the host operati... |
|
|
| 112275 |
EastWest |
CVE-2024-58100 - kernel-headers |
False Positive |
Moderate |
N/A |
Pending |
AWS False Positive Rationale
Containers use the host operati... |
|
|
| 112297 |
EastWest |
CVE-2025-0395 - glibc, glibc-common and 1 more |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Pending |
AWS has these findings rated with a CVSS score of 4.9. The A... |
|
|
| 112305 |
EastWest |
CVE-2025-0840 - binutils, libbinutils and 2 more |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Pending |
AWS has this finding rating with a CVSS score of 6.5. The At... |
|
|
| 112389 |
EastWest |
CVE-2025-13151 - libtasn1-6 |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Pending |
AWS has these findings rated with a CVSS score of 5.3. The A... |
|
|
| 112395 |
EastWest |
CVE-2025-13601 - glib2 |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Pending |
AWS has these findings rated with a CVSS score of 6.7.The At... |
|
|
| 112402 |
EastWest |
CVE-2025-13836 - libpython3.10, python3.10 |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Pending |
AWS has these findings rated with a CVSS score of 5.3. The A... |
|
|
| 112417 |
EastWest |
CVE-2025-14523 - libsoup |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Pending |
AWS has these findings rated with a CVSS score of 5.9. The A... |
|
|
| 112420 |
EastWest |
CVE-2025-15467 - libssl3, openssl |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Pending |
AWS has these findings rated with a CVSS score of 6.9. The A... |
|
|
| 112564 |
EastWest |
CVE-2025-23149 - kernel-headers |
False Positive |
Moderate |
N/A |
Pending |
AWS False Positive Rationale
Containers use the host operati... |
|
|
| 112570 |
EastWest |
CVE-2025-24528 - krb5-devel, krb5-libs and 1 more |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Pending |
AWS has these findings rated with a CVSS score of 6.5. The A... |
|
|
| 112574 |
EastWest |
CVE-2025-24928 - libxml2 |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Pending |
AWS has this finding rating with a CVSS score of 6.6. The Pr... |
|
|
| 112576 |
EastWest |
CVE-2025-25724 - libarchive |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Pending |
AWS has these findings rated with a CVSS score of 6.9. The A... |
|
|
| 112583 |
EastWest |
CVE-2025-27113 - libxml2 |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Pending |
AWS has these findings rated with a CVSS score of 4.9. The A... |
|
|
| 112588 |
EastWest |
CVE-2025-27363 - freetype |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Pending |
AWS has this finding rating with a CVSS score of 6.4. The At... |
|
|
| 112589 |
EastWest |
CVE-2025-27363 - libfreetype6 |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Pending |
AWS has this finding rating with a CVSS score of 6.4. The At... |
|
|
| 112633 |
EastWest |
CVE-2025-32414 - libxml2 |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Pending |
AWS has this finding rating with a CVSS score of 5.3. The At... |
|
|
| 112634 |
EastWest |
CVE-2025-32414 - libxml2 |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Pending |
AWS has this finding rating with a CVSS score of 5.3. The At... |
|
|
| 112637 |
EastWest |
CVE-2025-32415 - libxml2 |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Pending |
AWS has this finding rating with a CVSS score of 5.3. The At... |
|
|
| 112638 |
EastWest |
CVE-2025-32415 - libxml2 |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Pending |
AWS has this finding rating with a CVSS score of 5.3. The At... |
|
|
| 112641 |
EastWest |
CVE-2025-32462 - sudo |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Pending |
AWS has these findings rated with a CVSS score of 6.4. The A... |
|
|
| 112646 |
EastWest |
CVE-2025-32906 - libsoup |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Pending |
AWS has these findings rated with a CVSS score of 4.9. The A... |
|
|
| 112650 |
EastWest |
CVE-2025-32911 - libsoup |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Pending |
AWS has these findings rated with a CVSS score of 6.9. The A... |
|
|
| 112652 |
EastWest |
CVE-2025-32913 - libsoup |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Pending |
AWS has these findings rated with a CVSS score of 4.9. The A... |
|
|
| 112654 |
EastWest |
CVE-2025-32914 - libsoup |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Pending |
AWS has these findings rated with a CVSS score of 6.2. The A... |
|
|
| 112657 |
EastWest |
CVE-2025-32988 - gnutls |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Pending |
AWS has these findings rated with a CVSS score of 5.4. The A... |
|
|
| 112664 |
EastWest |
CVE-2025-32990 - gnutls |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Pending |
AWS has these findings rated with a CVSS score of 5.4. The A... |
|
|
| 112677 |
EastWest |
CVE-2025-37747 - kernel-headers |
False Positive |
Moderate |
N/A |
Pending |
AWS False Positive Rationale
Containers use the host operati... |
|
|
| 112680 |
EastWest |
CVE-2025-37760 - kernel-headers |
False Positive |
Moderate |
N/A |
Pending |
AWS False Positive Rationale
Containers use the host operati... |
|
|
| 112691 |
EastWest |
CVE-2025-37834 - kernel-headers |
False Positive |
Moderate |
N/A |
Pending |
AWS False Positive Rationale
Containers use the host operati... |
|
|
| 112692 |
EastWest |
CVE-2025-37837 - kernel-headers |
False Positive |
Moderate |
N/A |
Pending |
AWS False Positive Rationale
Containers use the host operati... |
|
|
| 112693 |
EastWest |
CVE-2025-37843 - kernel-headers |
False Positive |
Moderate |
N/A |
Pending |
AWS False Positive Rationale
Containers use the host operati... |
|
|
| 112694 |
EastWest |
CVE-2025-37846 - kernel-headers |
False Positive |
High |
N/A |
Pending |
AWS False Positive Rationale
Containers use the host operati... |
|
|
| 112696 |
EastWest |
CVE-2025-37849 - kernel-headers |
False Positive |
High |
N/A |
Pending |
AWS False Positive Rationale
Containers use the host operati... |
|
|
| 112697 |
EastWest |
CVE-2025-37856 - kernel-headers |
False Positive |
Moderate |
N/A |
Pending |
AWS False Positive Rationale
Containers use the host operati... |
|
|
| 112698 |
EastWest |
CVE-2025-37861 - kernel-headers |
False Positive |
High |
N/A |
Pending |
AWS False Positive Rationale
Containers use the host operati... |
|
|
| 112699 |
EastWest |
CVE-2025-37863 - kernel-headers |
False Positive |
Moderate |
N/A |
Pending |
AWS False Positive Rationale
Containers use the host operati... |
|
|
| 112703 |
EastWest |
CVE-2025-37894 - kernel-headers |
False Positive |
Moderate |
N/A |
Pending |
AWS False Positive Rationale
Containers use the host operati... |
|
|
| 112704 |
EastWest |
CVE-2025-37908 - kernel-headers |
False Positive |
High |
N/A |
Pending |
AWS False Positive Rationale
Containers use the host operati... |
|
|
| 112706 |
EastWest |
CVE-2025-37921 - kernel-headers |
False Positive |
High |
N/A |
Pending |
AWS False Positive Rationale
Containers use the host operati... |
|
|
| 112707 |
EastWest |
CVE-2025-37936 - kernel-headers |
False Positive |
Moderate |
N/A |
Pending |
AWS False Positive Rationale
Containers use the host operati... |
|
|
| 112708 |
EastWest |
CVE-2025-37938 - kernel-headers |
False Positive |
Moderate |
N/A |
Pending |
AWS False Positive Rationale
Containers use the host operati... |
|
|
| 112710 |
EastWest |
CVE-2025-37955 - kernel-headers |
False Positive |
Moderate |
N/A |
Pending |
AWS False Positive Rationale
Containers use the host operati... |
|
|
| 112712 |
EastWest |
CVE-2025-37980 - kernel-headers |
False Positive |
Moderate |
N/A |
Pending |
AWS False Positive Rationale
Containers use the host operati... |
|
|
| 112713 |
EastWest |
CVE-2025-37981 - kernel-headers |
False Positive |
High |
N/A |
Pending |
AWS False Positive Rationale
Containers use the host operati... |
|
|
| 112714 |
EastWest |
CVE-2025-37986 - kernel-headers |
False Positive |
Moderate |
N/A |
Pending |
AWS False Positive Rationale
Containers use the host operati... |
|
|
| 112715 |
EastWest |
CVE-2025-37988 - kernel-headers |
False Positive |
Moderate |
N/A |
Pending |
AWS False Positive Rationale
Containers use the host operati... |
|
|
| 112717 |
EastWest |
CVE-2025-37999 - kernel-headers |
False Positive |
Moderate |
N/A |
Pending |
AWS False Positive Rationale
Containers use the host operati... |
|
|
| 112731 |
EastWest |
CVE-2025-38097 - kernel-headers |
False Positive |
Moderate |
N/A |
Pending |
AWS False Positive Rationale
Containers use the host operati... |
|
|
| 112732 |
EastWest |
CVE-2025-38101 - kernel-headers |
False Positive |
High |
N/A |
Pending |
AWS False Positive Rationale
Containers use the host operati... |
|
|
| 112733 |
EastWest |
CVE-2025-38109 - kernel-headers |
False Positive |
High |
N/A |
Pending |
AWS False Positive Rationale
Containers use the host operati... |
|
|
| 112735 |
EastWest |
CVE-2025-38110 - kernel-headers |
False Positive |
High |
N/A |
Pending |
AWS False Positive Rationale
Containers use the host operati... |
|
|
| 112744 |
EastWest |
CVE-2025-38216 - kernel-headers |
False Positive |
High |
N/A |
Pending |
AWS False Positive Rationale
Containers use the host operati... |
|
|
| 112746 |
EastWest |
CVE-2025-38223 - kernel-headers |
False Positive |
Moderate |
N/A |
Pending |
AWS False Positive Rationale
Containers use the host operati... |
|
|
| 112747 |
EastWest |
CVE-2025-38232 - kernel-headers |
False Positive |
Moderate |
N/A |
Pending |
AWS False Positive Rationale
Containers use the host operati... |
|
|
| 112750 |
EastWest |
CVE-2025-38267 - kernel-headers |
False Positive |
High |
N/A |
Pending |
AWS False Positive Rationale
Containers use the host operati... |
|
|
| 112751 |
EastWest |
CVE-2025-38269 - kernel-headers |
False Positive |
Moderate |
N/A |
Pending |
AWS False Positive Rationale
Containers use the host operati... |
|
|
| 112754 |
EastWest |
CVE-2025-38302 - kernel-headers |
False Positive |
Moderate |
N/A |
Pending |
AWS False Positive Rationale
Containers use the host operati... |
|
|
| 112755 |
EastWest |
CVE-2025-38321 - kernel-headers |
False Positive |
Moderate |
N/A |
Pending |
AWS False Positive Rationale
Containers use the host operati... |
|
|
| 112759 |
EastWest |
CVE-2025-38338 - kernel-headers |
False Positive |
High |
N/A |
Pending |
AWS False Positive Rationale
Containers use the host operati... |
|
|
| 112764 |
EastWest |
CVE-2025-38364 - kernel-headers |
False Positive |
Moderate |
N/A |
Pending |
AWS False Positive Rationale
Containers use the host operati... |
|
|
| 112767 |
EastWest |
CVE-2025-38382 - kernel-headers |
False Positive |
Moderate |
N/A |
Pending |
AWS False Positive Rationale
Containers use the host operati... |
|
|
| 112774 |
EastWest |
CVE-2025-38427 - kernel-headers |
False Positive |
Moderate |
N/A |
Pending |
AWS False Positive Rationale
Containers use the host operati... |
|
|
| 112777 |
EastWest |
CVE-2025-38451 - kernel-headers |
False Positive |
Moderate |
N/A |
Pending |
AWS False Positive Rationale
Containers use the host operati... |
|
|
| 112778 |
EastWest |
CVE-2025-38455 - kernel-headers |
False Positive |
Moderate |
N/A |
Pending |
AWS False Positive Rationale
Containers use the host operati... |
|
|
| 112789 |
EastWest |
CVE-2025-38503 - kernel-headers |
False Positive |
Moderate |
N/A |
Pending |
AWS False Positive Rationale
Containers use the host operati... |
|
|
| 112793 |
EastWest |
CVE-2025-38552 - kernel-headers |
False Positive |
High |
N/A |
Pending |
AWS False Positive Rationale
Containers use the host operati... |
|
|
| 112849 |
EastWest |
CVE-2025-40083 - kernel-headers |
False Positive |
Moderate |
N/A |
Pending |
AWS False Positive Rationale
Containers use the host operati... |
|
|
| 112856 |
EastWest |
CVE-2025-40186 - kernel-headers |
False Positive |
High |
N/A |
Pending |
AWS False Positive Rationale
Containers use the host operati... |
|
|
| 112857 |
EastWest |
CVE-2025-40211 - kernel-headers |
False Positive |
High |
N/A |
Pending |
AWS False Positive Rationale
Containers use the host operati... |
|
|
| 112858 |
EastWest |
CVE-2025-40214 - kernel-headers |
False Positive |
High |
N/A |
Pending |
AWS False Positive Rationale
Containers use the host operati... |
|
|
| 112859 |
EastWest |
CVE-2025-40219 - kernel-headers |
False Positive |
Moderate |
N/A |
Pending |
AWS False Positive Rationale
Containers use the host operati... |
|
|
| 112860 |
EastWest |
CVE-2025-40220 - kernel-headers |
False Positive |
High |
N/A |
Pending |
AWS False Positive Rationale
Containers use the host operati... |
|
|
| 112861 |
EastWest |
CVE-2025-40231 - kernel-headers |
False Positive |
Moderate |
N/A |
Pending |
AWS False Positive Rationale
Containers use the host operati... |
|
|
| 112863 |
EastWest |
CVE-2025-40240 - kernel-headers |
False Positive |
High |
N/A |
Pending |
AWS False Positive Rationale
Containers use the host operati... |
|
|
| 112865 |
EastWest |
CVE-2025-40248 - kernel-headers |
False Positive |
High |
N/A |
Pending |
AWS False Positive Rationale
Containers use the host operati... |
|
|
| 112867 |
EastWest |
CVE-2025-40254 - kernel-headers |
False Positive |
High |
N/A |
Pending |
AWS False Positive Rationale
Containers use the host operati... |
|
|
| 112868 |
EastWest |
CVE-2025-40257 - kernel-headers |
False Positive |
Moderate |
N/A |
Pending |
AWS False Positive Rationale
Containers use the host operati... |
|
|
| 112870 |
EastWest |
CVE-2025-40258 - kernel-headers |
False Positive |
High |
N/A |
Pending |
AWS False Positive Rationale
Containers use the host operati... |
|
|
| 112871 |
EastWest |
CVE-2025-40259 - kernel-headers |
False Positive |
High |
N/A |
Pending |
AWS False Positive Rationale
Containers use the host operati... |
|
|
| 112872 |
EastWest |
CVE-2025-40264 - kernel-headers |
False Positive |
High |
N/A |
Pending |
AWS False Positive Rationale
Containers use the host operati... |
|
|
| 112873 |
EastWest |
CVE-2025-40271 - kernel-headers |
False Positive |
High |
N/A |
Pending |
AWS False Positive Rationale
Containers use the host operati... |
|
|
| 112874 |
EastWest |
CVE-2025-40272 - kernel-headers |
False Positive |
High |
N/A |
Pending |
AWS False Positive Rationale
Containers use the host operati... |
|
|
| 112875 |
EastWest |
CVE-2025-40273 - kernel-headers |
False Positive |
High |
N/A |
Pending |
AWS False Positive Rationale
Containers use the host operati... |
|
|
| 112877 |
EastWest |
CVE-2025-40277 - kernel-headers |
False Positive |
High |
N/A |
Pending |
AWS False Positive Rationale
Containers use the host operati... |
|
|
| 112878 |
EastWest |
CVE-2025-40279 - kernel-headers |
False Positive |
High |
N/A |
Pending |
AWS False Positive Rationale
Containers use the host operati... |
|
|
| 112879 |
EastWest |
CVE-2025-40281 - kernel-headers |
False Positive |
High |
N/A |
Pending |
AWS False Positive Rationale
Containers use the host operati... |
|
|
| 112880 |
EastWest |
CVE-2025-40292 - kernel-headers |
False Positive |
High |
N/A |
Pending |
AWS False Positive Rationale
Containers use the host operati... |
|
|
| 112881 |
EastWest |
CVE-2025-40293 - kernel-headers |
False Positive |
High |
N/A |
Pending |
AWS False Positive Rationale
Containers use the host operati... |
|
|
| 112883 |
EastWest |
CVE-2025-40297 - kernel-headers |
False Positive |
High |
N/A |
Pending |
AWS False Positive Rationale
Containers use the host operati... |
|
|
| 112885 |
EastWest |
CVE-2025-40304 - kernel-headers |
False Positive |
High |
N/A |
Pending |
AWS False Positive Rationale
Containers use the host operati... |
|
|
| 112886 |
EastWest |
CVE-2025-40313 - kernel-headers |
False Positive |
Moderate |
N/A |
Pending |
AWS False Positive Rationale
Containers use the host operati... |
|
|
| 112888 |
EastWest |
CVE-2025-40319 - kernel-headers |
False Positive |
Moderate |
N/A |
Pending |
AWS False Positive Rationale
Containers use the host operati... |
|
|
| 112889 |
EastWest |
CVE-2025-40322 - kernel-headers |
False Positive |
High |
N/A |
Pending |
AWS False Positive Rationale
Containers use the host operati... |
|
|
| 112890 |
EastWest |
CVE-2025-40323 - kernel-headers |
False Positive |
High |
N/A |
Pending |
AWS False Positive Rationale
Containers use the host operati... |
|
|
| 112891 |
EastWest |
CVE-2025-40324 - kernel-headers |
False Positive |
High |
N/A |
Pending |
AWS False Positive Rationale
Containers use the host operati... |
|
|
| 112892 |
EastWest |
CVE-2025-40331 - kernel-headers |
False Positive |
High |
N/A |
Pending |
AWS False Positive Rationale
Containers use the host operati... |
|
|
| 112893 |
EastWest |
CVE-2025-40341 - kernel-headers |
False Positive |
Moderate |
N/A |
Pending |
AWS False Positive Rationale
Containers use the host operati... |
|
|
| 112894 |
EastWest |
CVE-2025-40360 - kernel-headers |
False Positive |
Moderate |
N/A |
Pending |
AWS False Positive Rationale
Containers use the host operati... |
|
|
| 112895 |
EastWest |
CVE-2025-40361 - kernel-headers |
False Positive |
Moderate |
N/A |
Pending |
AWS False Positive Rationale
Containers use the host operati... |
|
|
| 112896 |
EastWest |
CVE-2025-40363 - kernel-headers |
False Positive |
High |
N/A |
Pending |
AWS False Positive Rationale
Containers use the host operati... |
|
|
| 112903 |
EastWest |
CVE-2025-4138 - python3, python3-libs |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Pending |
AWS has these findings rated with a CVSS score of 5.3. The A... |
|
|
| 112913 |
EastWest |
CVE-2025-4330 - python3, python3-libs |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Pending |
AWS has these findings rated with a CVSS score of 5.3. The A... |
|
|
| 112943 |
EastWest |
CVE-2025-4435 - python3, python3-libs |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Pending |
AWS has these findings rated with a CVSS score of 6.5. The A... |
|
|
| 112950 |
EastWest |
CVE-2025-4517 - python3, python3-libs |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Pending |
AWS has these findings rated with a CVSS score of 6.5. The A... |
|
|
| 112981 |
EastWest |
CVE-2025-4802 - glibc, glibc-common and 1 more |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Pending |
AWS has these findings rated with a CVSS score of 6.6. The A... |
|
|
| 112985 |
EastWest |
CVE-2025-48060 - jq |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Pending |
AWS has this finding rating with a CVSS score of 5.3. The At... |
|
|
| 112999 |
EastWest |
CVE-2025-4948 - libsoup |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Pending |
AWS has these findings rated with a CVSS score of 5.3. The A... |
|
|
| 113004 |
EastWest |
CVE-2025-49794 - libxml2 |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Pending |
AWS has these findings rated with a CVSS score of 6.2. The A... |
|
|
| 113009 |
EastWest |
CVE-2025-49796 - libxml2 |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Pending |
AWS has these findings rated with a CVSS score of 6.2. The A... |
|
|
| 113042 |
EastWest |
CVE-2025-5318 - libssh, libssh-config |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Pending |
AWS has these findings rated with a CVSS score of 5.9. The A... |
|
|
| 113104 |
EastWest |
CVE-2025-6020 - libpam-modules, libpam-modules-bin... |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Pending |
AWS has these findings rated with a CVSS score of 6.6. The A... |
|
|
| 113105 |
EastWest |
CVE-2025-6020 - libpam-modules, libpam-modules-bin... |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Pending |
AWS has these findings rated with a CVSS score of 6.6. The A... |
|
|
| 113108 |
EastWest |
CVE-2025-6021 - libxml2 |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Pending |
AWS has these findings rated with a CVSS score of 4.9. The A... |
|
|
| 113111 |
EastWest |
CVE-2025-6052 - libglib2.0-0t64 |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Pending |
AWS has these findings rated with a CVSS score of 5.3. The A... |
|
|
| 113145 |
EastWest |
CVE-2025-63757 - ffmpeg, libavcodec58 and 1 more |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Pending |
AWS has these findings rated with a CVSS score of 5.3. The A... |
|
|
| 113162 |
EastWest |
CVE-2025-64720 - libpng |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Pending |
AWS has this finding rating with a CVSS score of 5.4. The At... |
|
|
| 113167 |
EastWest |
CVE-2025-65018 - libpng |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Pending |
AWS has this finding rating with a CVSS score of 6.4. The At... |
|
|
| 113169 |
EastWest |
CVE-2025-65018 - libpng16-16 |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Pending |
AWS has this finding rating with a CVSS score of 6.4. The At... |
|
|
| 113182 |
EastWest |
CVE-2025-66293 - libpng |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Pending |
AWS has these findings rated with a CVSS score of 5.4. The A... |
|
|
| 113187 |
EastWest |
CVE-2025-66418 - python3-pip |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Pending |
AWS has this finding rating with a CVSS score of 5.3. The At... |
|
|
| 113191 |
EastWest |
CVE-2025-66471 - python3-pip |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Pending |
AWS has these findings rated with a CVSS score of 5.3. The A... |
|
|
| 113198 |
EastWest |
CVE-2025-68171 - kernel-headers |
False Positive |
Moderate |
N/A |
Pending |
AWS False Positive Rationale
Containers use the host operati... |
|
|
| 113199 |
EastWest |
CVE-2025-68173 - kernel-headers |
False Positive |
Moderate |
N/A |
Pending |
AWS False Positive Rationale
Containers use the host operati... |
|
|
| 113201 |
EastWest |
CVE-2025-68185 - kernel-headers |
False Positive |
High |
N/A |
Pending |
AWS False Positive Rationale
Containers use the host operati... |
|
|
| 113202 |
EastWest |
CVE-2025-68191 - kernel-headers |
False Positive |
High |
N/A |
Pending |
AWS False Positive Rationale
Containers use the host operati... |
|
|
| 113203 |
EastWest |
CVE-2025-68200 - kernel-headers |
False Positive |
Moderate |
N/A |
Pending |
AWS False Positive Rationale
Containers use the host operati... |
|
|
| 113204 |
EastWest |
CVE-2025-68214 - kernel-headers |
False Positive |
Moderate |
N/A |
Pending |
AWS False Positive Rationale
Containers use the host operati... |
|
|
| 113205 |
EastWest |
CVE-2025-68224 - kernel-headers |
False Positive |
Moderate |
N/A |
Pending |
AWS False Positive Rationale
Containers use the host operati... |
|
|
| 113206 |
EastWest |
CVE-2025-68227 - kernel-headers |
False Positive |
Moderate |
N/A |
Pending |
AWS False Positive Rationale
Containers use the host operati... |
|
|
| 113207 |
EastWest |
CVE-2025-68229 - kernel-headers |
False Positive |
High |
N/A |
Pending |
AWS False Positive Rationale
Containers use the host operati... |
|
|
| 113208 |
EastWest |
CVE-2025-68231 - kernel-headers |
False Positive |
High |
N/A |
Pending |
AWS False Positive Rationale
Containers use the host operati... |
|
|
| 113209 |
EastWest |
CVE-2025-68241 - kernel-headers |
False Positive |
High |
N/A |
Pending |
AWS False Positive Rationale
Containers use the host operati... |
|
|
| 113210 |
EastWest |
CVE-2025-68244 - kernel-headers |
False Positive |
High |
N/A |
Pending |
AWS False Positive Rationale
Containers use the host operati... |
|
|
| 113212 |
EastWest |
CVE-2025-68283 - kernel-headers |
False Positive |
High |
N/A |
Pending |
AWS False Positive Rationale
Containers use the host operati... |
|
|
| 113213 |
EastWest |
CVE-2025-68284 - kernel-headers |
False Positive |
High |
N/A |
Pending |
AWS False Positive Rationale
Containers use the host operati... |
|
|
| 113215 |
EastWest |
CVE-2025-68285 - kernel-headers |
False Positive |
High |
N/A |
Pending |
AWS False Positive Rationale
Containers use the host operati... |
|
|
| 113217 |
EastWest |
CVE-2025-68287 - kernel-headers |
False Positive |
High |
N/A |
Pending |
AWS False Positive Rationale
Containers use the host operati... |
|
|
| 113218 |
EastWest |
CVE-2025-68288 - kernel-headers |
False Positive |
Moderate |
N/A |
Pending |
AWS False Positive Rationale
Containers use the host operati... |
|
|
| 113219 |
EastWest |
CVE-2025-68295 - kernel-headers |
False Positive |
Moderate |
N/A |
Pending |
AWS False Positive Rationale
Containers use the host operati... |
|
|
| 113222 |
EastWest |
CVE-2025-68321 - kernel-headers |
False Positive |
Moderate |
N/A |
Pending |
AWS False Positive Rationale
Containers use the host operati... |
|
|
| 113230 |
EastWest |
CVE-2025-68973 - gnupg, gnupg2 and 1 more |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Pending |
AWS has these findings rated with a CVSS score of 6.9. .The ... |
|
|
| 113242 |
EastWest |
CVE-2025-69419 - libssl1.1, openssl |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Pending |
AWS has these findings rated with a CVSS score of 5.4. The A... |
|
|
| 113246 |
EastWest |
CVE-2025-69420 - libssl1.1, openssl |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Pending |
AWS has these findings rated with a CVSS score of 5.3. The A... |
|
|
| 113263 |
EastWest |
CVE-2025-7345 - gdk-pixbuf2 |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Pending |
AWS has these findings rated with a CVSS score of 5.3. The A... |
|
|
| 113265 |
EastWest |
CVE-2025-7424 - libxslt1.1 |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Pending |
AWS has these findings rated with a CVSS score of 5.3. The A... |
|
|
| 113270 |
EastWest |
CVE-2025-7425 - libxml2 |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Pending |
AWS has these findings rated with a CVSS score of 6.6. The P... |
|
|
| 113286 |
EastWest |
CVE-2025-8176 - libtiff |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Pending |
AWS has these findings rated with a CVSS score of 6.4. The A... |
|
|
| 113289 |
EastWest |
CVE-2025-8194 - libpython3.10, python3.10 |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Pending |
AWS has these findings rated with a CVSS score of 4.9. The A... |
|
|
| 113325 |
EastWest |
CVE-2025-9230 - libssl1.1, openssl |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Pending |
AWS has these findings rated with a CVSS score of 5.3. The A... |
|
|
| 113356 |
EastWest |
CVE-2026-21441 - python3-urllib3, urllib3 |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Pending |
AWS has these findings rated with a CVSS score of 5.3. The A... |
|
|
| 113358 |
EastWest |
CVE-2026-21441 - python3-urllib3 |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Pending |
AWS has these findings rated with a CVSS score of 5.3. The A... |
|
|
| 113362 |
EastWest |
CVE-2026-22695 - libpng16-16 |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Pending |
AWS has these findings rated with a CVSS score of 6.3.The At... |
|
|
| 113373 |
EastWest |
CVE-2026-22801 - libpng16-16 |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Pending |
AWS has these findings rated with a CVSS score of 6.4. The A... |
|
|
| 410 |
GovCloud |
Malicious Code Protection |
Operational Requirement |
Low |
N/A |
Approved |
Operational Requirement Justification: AWS has determined th... |
6/12/2025 |
06/12/2026 |
| 411 |
GovCloud |
Concurrent Session Control |
Operational Requirement |
Low |
N/A |
Approved |
Operational Requirement Justification: Limiting the number o... |
6/12/2025 |
06/12/2026 |
| 412 |
GovCloud |
Identifier Management |
Operational Requirement |
Low |
N/A |
Approved |
AWS Operational Requirement Justification: AWS has a distrib... |
|
|
| 826 |
GovCloud |
SSL Medium Strength Cipher Suites Supported (SWEET... |
Risk Adjustment |
Low |
Low |
Approved |
AWS Risk Adjustment Rationale All impacted hosts sit within ... |
11/14/2024 |
11/12/2025 |
| 827 |
GovCloud |
SSL Certificate Signed Using Weak Hashing Algorith... |
Risk Adjustment |
Low |
Low |
Approved |
Operational Impact Statement: AWS currently utilize self-sig... |
6/12/2025 |
06/12/2026 |
| 828 |
GovCloud |
SSL Certificate Cannot Be Trusted |
Operational Requirement |
Moderate |
N/A |
Approved |
Operational Impact Statement: All affected hosts are all bac... |
6/12/2025 |
06/12/2026 |
| 829 |
GovCloud |
SSL Certificate with Wrong Hostname |
Operational Requirement |
Moderate |
N/A |
Approved |
Operational Impact Statement: AWS currently utilize self-sig... |
6/12/2025 |
06/12/2026 |
| 832 |
GovCloud |
SSL Self-Signed Certificate |
Operational Requirement |
Moderate |
N/A |
Approved |
Operational Requirement Justification: AWS currently utilize... |
6/12/2025 |
06/12/2026 |
| 1241 |
GovCloud |
TLS Version 1.0 (104743) /1.1 (157288) Protocol De... |
Operational Requirement |
Moderate |
N/A |
Approved |
AWS Operational Requirement Rationale: Weakness Name: TLS Ve... |
02/07/2025 |
02/12/2026 |
| 1460 |
GovCloud |
Unencrypted Communications |
Operational Requirement |
Low |
N/A |
Approved |
Justification for this request: The service team provided ev... |
6/12/2025 |
06/12/2026 |
| 2537 |
GovCloud |
SSL RC4 Cipher Suites Supported (Bar Mitzvah) |
Risk Adjustment |
Low |
Low |
Approved |
Deviation Request Rationale: AWS has CVE-2013-2566 rated wit... |
6/12/2025 |
06/12/2026 |
| 2541 |
GovCloud |
HSTS Missing From HTTPS Server (RFC 6797) |
Operational Requirement |
Moderate |
N/A |
Approved |
Operational Impact Statement: All of the hosts identified in... |
6/12/2025 |
06/12/2026 |
| 2744 |
GovCloud |
Architecture and Provisioning for Name/Address Res... |
Operational Requirement |
Low |
N/A |
Pending |
AWS Operational Requirement Rationale The purpose of this do... |
05/12/2025 |
05/12/2026 |
| 6725 |
GovCloud |
AWS Sensitive Data Exposure (AWS DataSync) |
Operational Requirement |
Moderate |
N/A |
Approved |
Justification for this request: The POST request in the pene... |
6/12/2025 |
06/12/2026 |
| 6741 |
GovCloud |
User Account Enumeration (KMS) |
Operational Requirement |
Low |
N/A |
Approved |
Justification for the request: This is intended functionalit... |
6/12/2025 |
06/12/2026 |
| 14899 |
GovCloud |
Sensitive Information Exposure Via Calls Made by U... |
Operational Requirement |
Low |
N/A |
Approved |
Justification for this request: The POST request in the pene... |
6/12/2025 |
06/12/2026 |
| 14904 |
GovCloud |
Kinesis Analytics Application Remains in Updating ... |
Operational Requirement |
Low |
N/A |
Approved |
Justification for this request: Checked the logs for the APP... |
6/12/2025 |
06/12/2026 |
| 21543 |
GovCloud |
Cross-origin resource sharing: all subdomains trus... |
Operational Requirement |
Low |
N/A |
Approved |
Operational Impact Statement: AWS utilizes subdomains wildca... |
6/12/2025 |
06/12/2026 |
| 21716 |
GovCloud |
Strict transport security not enforced |
Operational Requirement |
Low |
N/A |
Approved |
Deviation Request Rationale: The GET request to the affected... |
6/12/2025 |
06/12/2026 |
| 29925 |
GovCloud |
SSH Terrapin Prefix Truncation Weakness (CVE-2023-... |
Risk Adjustment |
Low |
Low |
Approved |
Deviation Request Rationale: AWS has CVE-2023-48795 rated wi... |
6/12/2025 |
06/12/2026 |
| 39808 |
GovCloud |
Configuration Settings |
Operational Requirement |
Low |
N/A |
Approved |
AWS Operational Requirement Rationale: AWS does not use DoD ... |
07/10/2025 |
07/12/2026 |
| 39809 |
GovCloud |
Configuration Settings |
Operational Requirement |
Low |
N/A |
Approved |
AWS Operational Requirement Rationale: AWS does not have a m... |
07/10/2025 |
07/12/2026 |
| 43804 |
GovCloud |
Vulnerability Scanning Gap (RA-5) |
Operational Requirement |
Low |
N/A |
Approved |
AWS OR Rationale: AWS Customer Compliance Guide for AWS Snow... |
9/16/2024 |
09/12/2025 |
| 43805 |
GovCloud |
SSL Certificate Expiry |
Risk Adjustment |
Low |
Low |
Approved |
AWS Risk Adjustment Rationale All impacted hosts sit within ... |
11/14/2024 |
11/12/2025 |
| 47817 |
GovCloud |
IVS JUNIPER VULNS 22.2group1 / IVS JUNIPER VULNS 2... |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS Risk Adjustment Justification AWS and Juniper have not y... |
01/10/2025 |
01/12/2026 |
| 55818 |
GovCloud |
IVS JUNIPER VULNS 19.4 |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS Risk Adjustment Rationale AWS evaluates each new CVE for... |
02/07/2025 |
02/12/2026 |
| 55820 |
GovCloud |
IVS JUNIPER VULNS 21.4 |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS Risk Adjustment Rationale AWS and Juniper have not yet i... |
02/07/2025 |
02/12/2026 |
| 72285 |
GovCloud |
IVS JUNIPER VULNS 21.4.group4 |
Operational Requirement |
Moderate |
N/A |
Approved |
AWS Operational Requirement Justification 78 networking devi... |
06/11/2025 |
06/12/2026 |
| 87753 |
GovCloud |
Electron Application Backdoor (Amazon Chime for Wi... |
Risk Adjustment |
Low |
Low |
Approved |
The Risk Adjustment request is due to this vulnerability req... |
11/10/2025 |
11/12/2026 |
| 87754 |
GovCloud |
Sensitive Exported Node Modules (Amazon Chime for ... |
Risk Adjustment |
Low |
Low |
Approved |
The Risk Adjustment request is due to this vulnerability req... |
11/10/2025 |
11/12/2026 |
| 87755 |
GovCloud |
Unencrypted Data in Transit (Application Auto Scal... |
Operational Requirement |
Low |
N/A |
Approved |
AWS Operational Requirement Rationale: The Shared Responsibi... |
10/13/2025 |
10/12/2026 |
| 88205 |
GovCloud |
IVS JUNIPER VULNS 14.1.group5 |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS Risk Adjustment Rationale: AWS and Juniper have not yet ... |
10/13/2025 |
10/12/2026 |
| 88206 |
GovCloud |
IVS JUNIPER VULNS 18.1.group5 |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Approved |
AWS Risk Adjustment Rationale: AWS and Juniper have not yet ... |
10/13/2025 |
10/12/2026 |
| 88434 |
GovCloud |
Open redirection (DOM-based) |
False Positive |
Low |
N/A |
Pending |
The queryArgs variable is defined from the window.location.s... |
|
|
| 88435 |
GovCloud |
Link manipulation (DOM-based) |
False Positive |
Low |
N/A |
Pending |
AWS FP Rationale
In the following examples, the injected web... |
|
|
| 88644 |
GovCloud |
Secure HyperText Transfer Protocol (S-HTTP) Detect... |
Risk Adjustment |
Low |
Low |
Pending |
AWS Risk Adjustment
The initial risk rating of Moderate is ... |
|
|
| 88664 |
GovCloud |
Client-side JSON injection (DOM-based) |
Operational Requirement |
Low |
N/A |
Pending |
AWS Operational Requirement |
|
|
| 88993 |
GovCloud |
Apache Tomcat Default Files |
False Positive |
Moderate |
N/A |
Pending |
AWS False Positive Rationale
The risk presented by this fin... |
|
|
| 90239 |
GovCloud |
PostgreSQL 13.x < 13.23 / 14.x < 14.20 / 15.x < 15... |
False Positive |
Moderate |
N/A |
Pending |
AWS False Positive Rationale
The weakness source identifier... |
|
|
| 93454 |
GovCloud |
JWT signature not verified |
False Positive |
High |
N/A |
Pending |
AWS FP Rationale
The server does not validate the JSON Web T... |
|
|
| 93677 |
GovCloud |
CVE-2022-49698 - linux-libc-dev |
False Positive |
High |
N/A |
Pending |
AWS False Positive Rationale
Containers use the host operati... |
|
|
| 94245 |
GovCloud |
CVE-2025-15467 - libssl3, openssl |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Pending |
AWS has these findings rated with a CVSS score of 6.9. The A... |
|
|
| 94527 |
GovCloud |
CVE-2025-40019 - linux-libc-dev |
False Positive |
Moderate |
N/A |
Pending |
AWS False Positive Rationale
Containers use the host operati... |
|
|
| 94605 |
GovCloud |
CVE-2025-6020 - pam |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Pending |
AWS has these findings rated with a CVSS score of 6.6. The A... |
|
|
| 94654 |
GovCloud |
CVE-2025-68973 - gnupg, gnupg2 and 1 more |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Pending |
AWS has these findings rated with a CVSS score of 6.9. .The ... |
|
|
| 94660 |
GovCloud |
CVE-2025-69419 - libssl3, openssl |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Pending |
AWS has these findings rated with a CVSS score of 5.4. The A... |
|
|
| 94663 |
GovCloud |
CVE-2025-69420 - libssl3, openssl |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Pending |
AWS has these findings rated with a CVSS score of 5.3. The A... |
|
|
| 94725 |
GovCloud |
CVE-2026-24882 - gnupg2 |
Risk Adjustment and Vendor Dependency |
Moderate |
Moderate |
Pending |
AWS has these findings rated with a CVSS score of 6.4. The A... |
|
|