AWS Security Advisories — April 2019 — AWS Security Advisories — Vulnetix

Try Vulnetix Request Demo

AWS Security Advisories · April 2019 — AWS Security Advisories

5 advisories 11 CVEs 1 EXPLOITED

Amazon Linux (AL1, AL2, AL2023), AWS Security Bulletins, and AWS SDK CVEs for 2019-04. Mirrored into Vulnetix VDB.

Every advisory below is enriched with the Vulnetix VDB exploit-intelligence chip (hover a CVE ID in the interactive page to see CVSS, EPSS, KEV status, and PoC maturity). 1 is already weaponised in the wild — see the Exploited section.

Back to archive Open Console

Advisories

ALAS-2019-1194

ALAS · AL1Important2019-04-17

ALAS-2019-1194: wget (important)

CVEs:CVE-2019-5953

Affected products

Product	Status	Vendor	Package	Ecosystem
wget	affected	Amazon	wget	—

Upstream advisory

ALAS-2018-1123

ALAS · AL1Medium2019-04-17

ALAS-2018-1123: fuse (medium)

CVEs:CVE-2018-10906

Affected products

Product	Status	Vendor	Package	Ecosystem
fuse	affected	Amazon	fuse	—

Upstream advisory

ALAS-2019-1189

ALAS · AL1ExploitedImportant2019-04-05

ALAS-2019-1189: httpd24 (important)

CVEs:CVE-2019-0196 CVE-2019-0197 CVE-2019-0211 CVE-2019-0215 CVE-2019-0217 CVE-2019-0220

Affected products

Product	Status	Vendor	Package	Ecosystem
httpd24	affected	Amazon	httpd24	—

Upstream advisory

ALAS-2019-1187

ALAS · AL1Medium2019-04-04

ALAS-2019-1187: bind (medium)

CVEs:CVE-2018-5741

Affected products

Product	Status	Vendor	Package	Ecosystem
bind	affected	Amazon	bind	—

Upstream advisory

ALAS-2019-1188

ALAS · AL1Medium2019-04-04

ALAS-2019-1188: openssl (medium)

CVEs:CVE-2018-5407 CVE-2019-1559

Affected products

Product	Status	Vendor	Package	Ecosystem
openssl	affected	Amazon	openssl	—

Upstream advisory

Need live exploit intelligence?

Every CVE above is indexed in the Vulnetix VDB with KEV, EPSS, and PoC maturity. The interactive page surfaces that on hover.

All months Open Console