vulnerability
SUSE: CVE-2018-15869: SUSE Linux Security Advisory
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 5 | (AV:N/AC:L/Au:N/C:N/I:P/A:N) | Aug 24, 2018 | Nov 29, 2019 | Jan 30, 2020 |
Severity
5
CVSS
(AV:N/AC:L/Au:N/C:N/I:P/A:N)
Published
Aug 24, 2018
Added
Nov 29, 2019
Modified
Jan 30, 2020
Description
An Amazon Web Services (AWS) developer who does not specify the --owners flag when describing images via AWS CLI, and therefore not properly validating source software per AWS recommended security best practices, may unintentionally load an undesired and potentially malicious Amazon Machine Image (AMI) from the uncurated public community AMI catalog.
Solution(s)
suse-upgrade-aws-clisuse-upgrade-python2-boto3suse-upgrade-python2-botocoresuse-upgrade-python2-s3transfersuse-upgrade-python3-boto3suse-upgrade-python3-botocoresuse-upgrade-python3-s3transfer
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.