Amazon Aws S3 Crypto Sdk — known CVE vulnerabilities
Every CVE whose affected-product data names Amazon Aws S3 Crypto Sdk, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2020-8911 — CVSS 5.6 (medium): A padding oracle vulnerability exists in the AWS S3 Crypto SDK for GoLang versions prior to V2. The SDK allows users to encrypt files with…
CVE-2020-8912 — CVSS 2.5 (low): A vulnerability in the in-band key negotiation exists in the AWS S3 Crypto SDK for GoLang versions prior to V2. An attacker with write…