AWS Security Advisories · October 2017 — AWS Security Advisories
19 advisories 68 CVEs 1 EXPLOITED

Amazon Linux (AL1, AL2, AL2023), AWS Security Bulletins, and AWS SDK CVEs for 2017-10. Mirrored into Vulnetix VDB.

Every advisory below is enriched with the Vulnetix VDB exploit-intelligence chip (hover a CVE ID in the interactive page to see CVSS, EPSS, KEV status, and PoC maturity). 1 is already weaponised in the wild — see the Exploited section.

Advisories

ALAS-2017-913

ALAS · AL1ExploitedImportant2017-10-26

ALAS-2017-913: tomcat8, tomcat80, tomcat7 (important)

CVEs:CVE-2017-12617

Affected products

ProductStatusVendorPackageEcosystem
tomcat8, tomcat80, tomcat7 affected Amazon tomcat8, tomcat80, tomcat7
Upstream advisory

ALAS-2017-903

ALAS · AL1Medium2017-10-02

ALAS-2017-903: tomcat7, tomcat8 (medium)

CVEs:CVE-2017-7674

Affected products

ProductStatusVendorPackageEcosystem
tomcat7, tomcat8 affected Amazon tomcat7, tomcat8
Upstream advisory

Need live exploit intelligence?

Every CVE above is indexed in the Vulnetix VDB with KEV, EPSS, and PoC maturity. The interactive page surfaces that on hover.