AWS Security Advisories — July 2024 — AWS Security Advisories

AWS Security Advisories · July 2024 — AWS Security Advisories

4 advisories 9 CVEs 1 EXPLOITED

Amazon Linux (AL1, AL2, AL2023), AWS Security Bulletins, and AWS SDK CVEs for 2024-07. Mirrored into Vulnetix VDB.

Every advisory below is enriched with the Vulnetix VDB exploit-intelligence chip (hover a CVE ID in the interactive page to see CVSS, EPSS, KEV status, and PoC maturity). 1 is already weaponised in the wild — see the Exploited section.

Back to archive Open Console

Advisories

ALAS-2024-1944

ALAS · AL1ExploitedImportant2024-07-24

ALAS-2024-1944: httpd24 (important)

CVEs:CVE-2024-38474 CVE-2024-38475 CVE-2024-38476 CVE-2024-38477

Affected products

Product	Status	Vendor	Package	Ecosystem
httpd24	affected	Amazon	httpd24	—

Upstream advisory

AWS-2024-009

AWS Bulletin2024-07-18

Issue with PyTorch TorchServe - CVE-2024-35198, CVE-2024-35199

CVEs:CVE-2024-35198 CVE-2024-35199

Upstream advisory

AWS-2024-008

AWS Bulletin2024-07-16

Issue with AWS Client VPN - CVE-2024-30164, CVE-2024-30165

CVEs:CVE-2024-30164 CVE-2024-30165

Upstream advisory

ALAS-2024-1943

ALAS · AL1Important2024-07-09

ALAS-2024-1943: kernel (important)

CVEs:CVE-2021-47110

Affected products

Product	Status	Vendor	Package	Ecosystem
kernel	affected	Amazon	kernel	—

Upstream advisory

Need live exploit intelligence?

Every CVE above is indexed in the Vulnetix VDB with KEV, EPSS, and PoC maturity. The interactive page surfaces that on hover.

All months Open Console