Every advisory below is enriched with the Vulnetix VDB exploit-intelligence chip (hover a CVE ID in the interactive page to see CVSS, EPSS, KEV status, and PoC maturity).
ALAS-2016-722: tomcat6, tomcat7, tomcat8 (medium)
CVEs:CVE-2016-5388
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| tomcat6, tomcat7, tomcat8 | affected | Amazon | tomcat6, tomcat7, tomcat8 | — |
ALAS-2016-723: java-1.8.0-openjdk (critical)
CVEs:CVE-2016-3458CVE-2016-3500CVE-2016-3508CVE-2016-3550CVE-2016-3587CVE-2016-3598CVE-2016-3606CVE-2016-3610
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| java-1.8.0-openjdk | affected | Amazon | java-1.8.0-openjdk | — |
ALAS-2016-724: python26, python27, python34 (medium)
CVEs:CVE-2016-0772CVE-2016-5636CVE-2016-5699
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| python26, python27, python34 | affected | Amazon | python26, python27, python34 | — |
ALAS-2016-725: httpd24, httpd (important)
CVEs:CVE-2016-5387
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| httpd24, httpd | affected | Amazon | httpd24, httpd | — |
ALAS-2016-719: libxml2 (important)
CVEs:CVE-2016-1762CVE-2016-1833CVE-2016-1834CVE-2016-1835CVE-2016-1836CVE-2016-1837CVE-2016-1838CVE-2016-1839CVE-2016-1840CVE-2016-3627CVE-2016-3705CVE-2016-4447CVE-2016-4448CVE-2016-4449
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| libxml2 | affected | Amazon | libxml2 | — |
ALAS-2016-720: wget (medium)
CVEs:CVE-2016-4971
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| wget | affected | Amazon | wget | — |
ALAS-2016-721: varnish (important)
CVEs:CVE-2015-8852
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| varnish | affected | Amazon | varnish | — |
Every CVE above is indexed in the Vulnetix VDB with KEV, EPSS, and PoC maturity. The interactive page surfaces that on hover.