aws-cdk-lib has Insertion of Sensitive Information into Log File vulnerability when using Cognito UserPoolClient Construct

CVEs:GHSA-qq4x-c6h6-rfxh

Issue with AWS SAM CLI (CVE-2025-3047, CVE-2025-3048)

CVEs:CVE-2025-3047CVE-2025-3048

Issue with tough, versions prior to 0.20.0 (Multiple CVEs)

CVEs:CVE-2025-2885CVE-2025-2886CVE-2025-2887CVE-2025-2888

AWS CDK CodePipeline: trusted entities are too broad

CVEs:GHSA-5pq3-h73f-66hr

Issues with Kubernetes ingress-nginx controller (Multiple CVEs)

CVEs:CVE-2025-1097CVE-2025-1098CVE-2025-1974CVE-2025-24513CVE-2025-24514

Issue with the AWS CDK CLI and custom credential plugins (CVE-2025-2598)

CVEs:CVE-2025-2598

ALAS-2025-1964: emacs (important)

CVEs:CVE-2025-1244

Affected products

ALAS-2025-1965: libxml2 (important)

CVEs:CVE-2024-56171CVE-2025-24928

Affected products

ALAS-2025-1966: kernel (important)

CVEs:CVE-2024-49960CVE-2024-53179CVE-2025-21702

Affected products

ALAS-2025-1961: kernel (important)

CVEs:CVE-2024-49995CVE-2024-50035CVE-2024-50143CVE-2024-50279CVE-2024-56631CVE-2024-56642

Affected products

ALAS-2025-1962: kernel (important)

CVEs:CVE-2024-42284CVE-2024-42285CVE-2024-43882

Affected products

ALAS-2025-1963: kernel (important)

CVEs:CVE-2024-39487CVE-2024-42104

Affected products

Issue with Temporary elevated access management (TEAM) - CVE-2025-1969

CVEs:CVE-2025-1969