Back to search
CVE-2018-15869
Published: Aug 25, 2018
Modified: Aug 5, 2024
PUBLISHED
Description
An Amazon Web Services (AWS) developer who does not specify the --owners flag when describing images via AWS CLI, and therefore not properly validating source software per AWS recommended security best practices, may unintentionally load an undesired and potentially malicious Amazon Machine Image (AMI) from the uncurated public community AMI catalog.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
105172
vdb-entry
x_refsource_BID
https://github.com/hashicorp/packer/issues/6584
x_refsource_MISC
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now