CVE-2026-7791
- EPSS 0.01%
- Veröffentlicht 04.05.2026 22:16:20
- Zuletzt bearbeitet 05.05.2026 19:32:23
Improper privilege management in the log rotation mechanism of the Skylight Workspace Config Service in Amazon WorkSpaces for Windows before 2.6.2034.0 allows a local non-admin authenticated user to place arbitrary files into arbitrary locations bypa...
CVE-2025-12779
- EPSS 0.02%
- Veröffentlicht 05.11.2025 21:20:51
- Zuletzt bearbeitet 15.04.2026 00:35:42
Improper handling of the authentication token in the Amazon WorkSpaces client for Linux, versions 2023.0 through 2024.8, may expose the authentication token for DCV-based WorkSpaces to other local users on the same client machine. Under certain circu...
CVE-2025-0501
- EPSS 0.21%
- Veröffentlicht 15.01.2025 19:15:27
- Zuletzt bearbeitet 15.04.2026 00:35:42
An issue in the native clients for Amazon WorkSpaces (when running PCoIP protocol) may allow an attacker to access remote sessions via man-in-the-middle.
CVE-2021-43637
- EPSS 0.08%
- Veröffentlicht 07.12.2021 20:15:08
- Zuletzt bearbeitet 21.11.2024 06:29:33
Amazon WorkSpaces agent is affected by Buffer Overflow. IOCTL Handler 0x22001B in the Amazon WorkSpaces agent below v1.0.1.1537 allow local attackers to execute arbitrary code in kernel mode or cause a denial of service (memory corruption and OS cras...
CVE-2021-43638
- EPSS 0.14%
- Veröffentlicht 07.12.2021 20:15:08
- Zuletzt bearbeitet 21.11.2024 06:29:33
Amazon Amazon WorkSpaces agent is affected by Integer Overflow. IOCTL Handler 0x22001B in the Amazon WorkSpaces agent below v1.0.1.1537 allow local attackers to execute arbitrary code in kernel mode or cause a denial of service (memory corruption and...