ACK Detected Controllers CVEs

| CVE ID | Type | Severity | Installed Version | Fixed Version | Affected Controllers | Title |
|---|---|---|---|---|---|---|
|CVE-2025-58183|gobinary|HIGH|1.25.1|1.24.8, 1.25.2|[opensearchservice athena eventbridge keyspaces networkfirewall rds applicationautoscaling cloudtrail cloudwatch sqs ecrpublic emrcontainers iam wafv2 secretsmanager eks apigatewayv2 ecs glue mq cloudfront codeartifact s3control firehose recyclebin route53 elasticache kms sagemaker cognitoidentityprovider kafka apigateway ram ssm ecr elbv2 kinesis route53resolver sfn bedrockagentcorecontrol cloudwatchlogs memorydb opensearchserverless sns ec2 efs acm s3 acmpca lambda organizations prometheusservice ses bedrock documentdb]|golang: archive/tar: Unbounded allocation when parsing GNU sparse map|
|CVE-2025-58186|gobinary|HIGH|1.25.1|1.24.8, 1.25.2|[opensearchservice athena eventbridge keyspaces networkfirewall rds applicationautoscaling cloudtrail cloudwatch sqs ecrpublic emrcontainers iam wafv2 secretsmanager eks apigatewayv2 ecs glue mq cloudfront codeartifact s3control firehose recyclebin route53 elasticache kms sagemaker cognitoidentityprovider kafka apigateway ram ssm ecr elbv2 kinesis route53resolver sfn bedrockagentcorecontrol cloudwatchlogs memorydb opensearchserverless sns ec2 efs acm s3 acmpca lambda organizations prometheusservice ses bedrock documentdb]|Despite HTTP headers having a default limit of 1MB, the number of cook ...|
|CVE-2025-58188|gobinary|HIGH|1.25.1|1.24.8, 1.25.2|[opensearchservice athena eventbridge keyspaces networkfirewall rds applicationautoscaling cloudtrail cloudwatch sqs ecrpublic emrcontainers iam wafv2 secretsmanager eks apigatewayv2 ecs glue mq cloudfront codeartifact s3control firehose recyclebin route53 elasticache kms sagemaker cognitoidentityprovider kafka apigateway ram ssm ecr elbv2 kinesis route53resolver sfn bedrockagentcorecontrol cloudwatchlogs memorydb opensearchserverless sns ec2 efs acm s3 acmpca lambda organizations prometheusservice ses bedrock documentdb]|Validating certificate chains which contain DSA public keys can cause  ...|
|CVE-2025-61724|gobinary|HIGH|1.25.1|1.24.8, 1.25.2|[opensearchservice athena eventbridge keyspaces networkfirewall rds applicationautoscaling cloudtrail cloudwatch sqs ecrpublic emrcontainers iam wafv2 secretsmanager eks apigatewayv2 ecs glue mq cloudfront codeartifact s3control firehose recyclebin route53 elasticache kms sagemaker cognitoidentityprovider kafka apigateway ram ssm ecr elbv2 kinesis route53resolver sfn bedrockagentcorecontrol cloudwatchlogs memorydb opensearchserverless sns ec2 efs acm s3 acmpca lambda organizations prometheusservice ses bedrock documentdb]|The Reader.ReadResponse function constructs a response string through  ...|
|CVE-2025-58189|gobinary|MEDIUM|1.25.1|1.24.8, 1.25.2|[opensearchservice athena eventbridge keyspaces networkfirewall rds applicationautoscaling cloudtrail cloudwatch sqs ecrpublic emrcontainers iam wafv2 secretsmanager eks apigatewayv2 ecs glue mq cloudfront codeartifact s3control firehose recyclebin route53 elasticache kms sagemaker cognitoidentityprovider kafka apigateway ram ssm ecr elbv2 kinesis route53resolver sfn bedrockagentcorecontrol cloudwatchlogs memorydb opensearchserverless sns ec2 efs acm s3 acmpca lambda organizations prometheusservice ses bedrock documentdb]|crypto/tls: go crypto/tls ALPN negotiation error contains attacker controlled information|
|CVE-2025-61725|gobinary|MEDIUM|1.25.1|1.24.8, 1.25.2|[opensearchservice athena eventbridge keyspaces networkfirewall rds applicationautoscaling cloudtrail cloudwatch sqs ecrpublic emrcontainers iam wafv2 secretsmanager eks apigatewayv2 ecs glue mq cloudfront codeartifact s3control firehose recyclebin route53 elasticache kms sagemaker cognitoidentityprovider kafka apigateway ram ssm ecr elbv2 kinesis route53resolver sfn bedrockagentcorecontrol cloudwatchlogs memorydb opensearchserverless sns ec2 efs acm s3 acmpca lambda organizations prometheusservice ses bedrock documentdb]|net/mail: Excessive CPU consumption in ParseAddress in net/mail|
|CVE-2025-47912|gobinary|HIGH|1.25.1|1.24.8, 1.25.2|[opensearchservice athena eventbridge keyspaces networkfirewall rds applicationautoscaling cloudtrail cloudwatch sqs ecrpublic emrcontainers iam wafv2 secretsmanager eks apigatewayv2 ecs glue mq cloudfront codeartifact s3control firehose recyclebin route53 elasticache kms sagemaker cognitoidentityprovider kafka apigateway ram ssm ecr elbv2 kinesis route53resolver sfn bedrockagentcorecontrol cloudwatchlogs memorydb opensearchserverless sns ec2 efs acm s3 acmpca lambda organizations prometheusservice ses bedrock documentdb]|The Parse function permits values other than IPv6 addresses to be incl ...|
|CVE-2025-58187|gobinary|HIGH|1.25.1|1.24.9, 1.25.3|[opensearchservice athena eventbridge keyspaces networkfirewall rds applicationautoscaling cloudtrail cloudwatch sqs ecrpublic emrcontainers iam wafv2 secretsmanager eks apigatewayv2 ecs glue mq cloudfront codeartifact s3control firehose recyclebin route53 elasticache kms sagemaker cognitoidentityprovider kafka apigateway ram ssm ecr elbv2 kinesis route53resolver sfn bedrockagentcorecontrol cloudwatchlogs memorydb opensearchserverless sns ec2 efs acm s3 acmpca lambda organizations prometheusservice ses bedrock documentdb]|Due to the design of the name constraint checking algorithm, the proce ...|
|CVE-2025-58185|gobinary|MEDIUM|1.25.1|1.24.8, 1.25.2|[opensearchservice athena eventbridge keyspaces networkfirewall rds applicationautoscaling cloudtrail cloudwatch sqs ecrpublic emrcontainers iam wafv2 secretsmanager eks apigatewayv2 ecs glue mq cloudfront codeartifact s3control firehose recyclebin route53 elasticache kms sagemaker cognitoidentityprovider kafka apigateway ram ssm ecr elbv2 kinesis route53resolver sfn bedrockagentcorecontrol cloudwatchlogs memorydb opensearchserverless sns ec2 efs acm s3 acmpca lambda organizations prometheusservice ses bedrock documentdb]|encoding/asn1: Parsing DER payload can cause memory exhaustion in encoding/asn1|
|CVE-2025-61723|gobinary|MEDIUM|1.25.1|1.24.8, 1.25.2|[opensearchservice athena eventbridge keyspaces networkfirewall rds applicationautoscaling cloudtrail cloudwatch sqs ecrpublic emrcontainers iam wafv2 secretsmanager eks apigatewayv2 ecs glue mq cloudfront codeartifact s3control firehose recyclebin route53 elasticache kms sagemaker cognitoidentityprovider kafka apigateway ram ssm ecr elbv2 kinesis route53resolver sfn bedrockagentcorecontrol cloudwatchlogs memorydb opensearchserverless sns ec2 efs acm s3 acmpca lambda organizations prometheusservice ses bedrock documentdb]|encoding/pem: Quadratic complexity when parsing some invalid inputs in encoding/pem|


Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

ACK Detected Controllers CVEs #2677

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

CVE ID	Type	Severity	Installed Version	Fixed Version	Affected Controllers	Title
CVE-2025-58183	gobinary	HIGH	1.25.1	1.24.8, 1.25.2	[opensearchservice athena eventbridge keyspaces networkfirewall rds applicationautoscaling cloudtrail cloudwatch sqs ecrpublic emrcontainers iam wafv2 secretsmanager eks apigatewayv2 ecs glue mq cloudfront codeartifact s3control firehose recyclebin route53 elasticache kms sagemaker cognitoidentityprovider kafka apigateway ram ssm ecr elbv2 kinesis route53resolver sfn bedrockagentcorecontrol cloudwatchlogs memorydb opensearchserverless sns ec2 efs acm s3 acmpca lambda organizations prometheusservice ses bedrock documentdb]	golang: archive/tar: Unbounded allocation when parsing GNU sparse map
CVE-2025-58186	gobinary	HIGH	1.25.1	1.24.8, 1.25.2	[opensearchservice athena eventbridge keyspaces networkfirewall rds applicationautoscaling cloudtrail cloudwatch sqs ecrpublic emrcontainers iam wafv2 secretsmanager eks apigatewayv2 ecs glue mq cloudfront codeartifact s3control firehose recyclebin route53 elasticache kms sagemaker cognitoidentityprovider kafka apigateway ram ssm ecr elbv2 kinesis route53resolver sfn bedrockagentcorecontrol cloudwatchlogs memorydb opensearchserverless sns ec2 efs acm s3 acmpca lambda organizations prometheusservice ses bedrock documentdb]	Despite HTTP headers having a default limit of 1MB, the number of cook ...
CVE-2025-58188	gobinary	HIGH	1.25.1	1.24.8, 1.25.2	[opensearchservice athena eventbridge keyspaces networkfirewall rds applicationautoscaling cloudtrail cloudwatch sqs ecrpublic emrcontainers iam wafv2 secretsmanager eks apigatewayv2 ecs glue mq cloudfront codeartifact s3control firehose recyclebin route53 elasticache kms sagemaker cognitoidentityprovider kafka apigateway ram ssm ecr elbv2 kinesis route53resolver sfn bedrockagentcorecontrol cloudwatchlogs memorydb opensearchserverless sns ec2 efs acm s3 acmpca lambda organizations prometheusservice ses bedrock documentdb]	Validating certificate chains which contain DSA public keys can cause ...
CVE-2025-61724	gobinary	HIGH	1.25.1	1.24.8, 1.25.2	[opensearchservice athena eventbridge keyspaces networkfirewall rds applicationautoscaling cloudtrail cloudwatch sqs ecrpublic emrcontainers iam wafv2 secretsmanager eks apigatewayv2 ecs glue mq cloudfront codeartifact s3control firehose recyclebin route53 elasticache kms sagemaker cognitoidentityprovider kafka apigateway ram ssm ecr elbv2 kinesis route53resolver sfn bedrockagentcorecontrol cloudwatchlogs memorydb opensearchserverless sns ec2 efs acm s3 acmpca lambda organizations prometheusservice ses bedrock documentdb]	The Reader.ReadResponse function constructs a response string through ...
CVE-2025-58189	gobinary	MEDIUM	1.25.1	1.24.8, 1.25.2	[opensearchservice athena eventbridge keyspaces networkfirewall rds applicationautoscaling cloudtrail cloudwatch sqs ecrpublic emrcontainers iam wafv2 secretsmanager eks apigatewayv2 ecs glue mq cloudfront codeartifact s3control firehose recyclebin route53 elasticache kms sagemaker cognitoidentityprovider kafka apigateway ram ssm ecr elbv2 kinesis route53resolver sfn bedrockagentcorecontrol cloudwatchlogs memorydb opensearchserverless sns ec2 efs acm s3 acmpca lambda organizations prometheusservice ses bedrock documentdb]	crypto/tls: go crypto/tls ALPN negotiation error contains attacker controlled information
CVE-2025-61725	gobinary	MEDIUM	1.25.1	1.24.8, 1.25.2	[opensearchservice athena eventbridge keyspaces networkfirewall rds applicationautoscaling cloudtrail cloudwatch sqs ecrpublic emrcontainers iam wafv2 secretsmanager eks apigatewayv2 ecs glue mq cloudfront codeartifact s3control firehose recyclebin route53 elasticache kms sagemaker cognitoidentityprovider kafka apigateway ram ssm ecr elbv2 kinesis route53resolver sfn bedrockagentcorecontrol cloudwatchlogs memorydb opensearchserverless sns ec2 efs acm s3 acmpca lambda organizations prometheusservice ses bedrock documentdb]	net/mail: Excessive CPU consumption in ParseAddress in net/mail
CVE-2025-47912	gobinary	HIGH	1.25.1	1.24.8, 1.25.2	[opensearchservice athena eventbridge keyspaces networkfirewall rds applicationautoscaling cloudtrail cloudwatch sqs ecrpublic emrcontainers iam wafv2 secretsmanager eks apigatewayv2 ecs glue mq cloudfront codeartifact s3control firehose recyclebin route53 elasticache kms sagemaker cognitoidentityprovider kafka apigateway ram ssm ecr elbv2 kinesis route53resolver sfn bedrockagentcorecontrol cloudwatchlogs memorydb opensearchserverless sns ec2 efs acm s3 acmpca lambda organizations prometheusservice ses bedrock documentdb]	The Parse function permits values other than IPv6 addresses to be incl ...
CVE-2025-58187	gobinary	HIGH	1.25.1	1.24.9, 1.25.3	[opensearchservice athena eventbridge keyspaces networkfirewall rds applicationautoscaling cloudtrail cloudwatch sqs ecrpublic emrcontainers iam wafv2 secretsmanager eks apigatewayv2 ecs glue mq cloudfront codeartifact s3control firehose recyclebin route53 elasticache kms sagemaker cognitoidentityprovider kafka apigateway ram ssm ecr elbv2 kinesis route53resolver sfn bedrockagentcorecontrol cloudwatchlogs memorydb opensearchserverless sns ec2 efs acm s3 acmpca lambda organizations prometheusservice ses bedrock documentdb]	Due to the design of the name constraint checking algorithm, the proce ...
CVE-2025-58185	gobinary	MEDIUM	1.25.1	1.24.8, 1.25.2	[opensearchservice athena eventbridge keyspaces networkfirewall rds applicationautoscaling cloudtrail cloudwatch sqs ecrpublic emrcontainers iam wafv2 secretsmanager eks apigatewayv2 ecs glue mq cloudfront codeartifact s3control firehose recyclebin route53 elasticache kms sagemaker cognitoidentityprovider kafka apigateway ram ssm ecr elbv2 kinesis route53resolver sfn bedrockagentcorecontrol cloudwatchlogs memorydb opensearchserverless sns ec2 efs acm s3 acmpca lambda organizations prometheusservice ses bedrock documentdb]	encoding/asn1: Parsing DER payload can cause memory exhaustion in encoding/asn1
CVE-2025-61723	gobinary	MEDIUM	1.25.1	1.24.8, 1.25.2	[opensearchservice athena eventbridge keyspaces networkfirewall rds applicationautoscaling cloudtrail cloudwatch sqs ecrpublic emrcontainers iam wafv2 secretsmanager eks apigatewayv2 ecs glue mq cloudfront codeartifact s3control firehose recyclebin route53 elasticache kms sagemaker cognitoidentityprovider kafka apigateway ram ssm ecr elbv2 kinesis route53resolver sfn bedrockagentcorecontrol cloudwatchlogs memorydb opensearchserverless sns ec2 efs acm s3 acmpca lambda organizations prometheusservice ses bedrock documentdb]	encoding/pem: Quadratic complexity when parsing some invalid inputs in encoding/pem

ACK Detected Controllers CVEs #2677

Description

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions