software.amazon.awssdk.iotdevicesdk:aws-iot-device-sdk (Maven) — known CVEs & security advisories
Known CVE vulnerabilities and GitHub Security Advisories affecting the Maven package software.amazon.awssdk.iotdevicesdk:aws-iot-device-sdk, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVEs (4)
CVE-2021-40828 — CVSS 6.3 (medium): Connections initialized by the AWS IoT Device SDK v2 for Java (versions prior to 1.3.3), Python (versions prior to 1.5.18), C++ (versions…
CVE-2021-40829 — CVSS 6.3 (medium): Connections initialized by the AWS IoT Device SDK v2 for Java (versions prior to 1.4.2), Python (versions prior to 1.6.1), C++ (versions…
CVE-2021-40830 — CVSS 6.3 (medium): The AWS IoT Device SDK v2 for Java, Python, C++ and Node.js appends a user supplied Certificate Authority (CA) to the root CAs instead of…
CVE-2021-40831 — CVSS 6.3 (medium): The AWS IoT Device SDK v2 for Java, Python, C++ and Node.js appends a user supplied Certificate Authority (CA) to the root CAs instead of…