thunderbird-debuginfo vulnerabilities

Direct Vulnerabilities

Known vulnerabilities in the thunderbird-debuginfo package. This does not include vulnerabilities belonging to this package’s dependencies.

How to fix?

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

Fix for free
VulnerabilityVulnerable Version
  • H
Buffer Overflow

<0:115.16.0-1.amzn2.0.1
  • H
Origin Validation Error

<0:115.16.0-1.amzn2.0.1
  • H
Arbitrary Code Injection

<0:115.16.0-1.amzn2.0.1
  • H
Use After Free

<0:115.16.0-1.amzn2.0.1
  • H
Arbitrary Code Injection

<0:115.16.0-1.amzn2.0.1
  • H
Exposure of System Data to an Unauthorized Control Sphere

<0:115.15.0-1.amzn2.0.1
  • H
Access of Resource Using Incompatible Type ('Type Confusion')

<0:115.15.0-1.amzn2.0.1
  • H
Incorrect Type Conversion or Cast

<0:115.15.0-1.amzn2.0.1
  • H
Buffer Overflow

<0:115.13.0-1.amzn2.0.1
  • H
Out-of-bounds Write

<0:115.15.0-1.amzn2.0.1
  • H
CVE-2024-7529

<0:115.14.0-1.amzn2.0.1
  • H
Use After Free

<0:115.14.0-1.amzn2.0.1
  • H
Out-of-bounds Write

<0:115.14.0-1.amzn2.0.1
  • H
Use of Uninitialized Resource

<0:115.14.0-1.amzn2.0.1
  • H
Out-of-bounds Read

<0:115.14.0-1.amzn2.0.1
  • H
Improper Privilege Management

<0:115.14.0-1.amzn2.0.1
  • H
Use After Free

<0:115.14.0-1.amzn2.0.1
  • M
Heap-based Buffer Overflow

<0:115.12.1-1.amzn2.0.2
  • H
Buffer Overflow

<0:115.12.1-1.amzn2.0.1
  • H
Improper Restriction of Rendered UI Layers or Frames

<0:91.11.0-2.amzn2.0.1
  • H
Buffer Overflow

<0:91.11.0-2.amzn2.0.1
  • H
Use After Free

<0:115.11.0-1.amzn2.0.1
  • H
Inclusion of Functionality from Untrusted Control Sphere

<0:115.11.0-1.amzn2.0.1
  • H
Buffer Overflow

<0:115.11.0-1.amzn2.0.1
  • H
Improper Cross-boundary Removal of Sensitive Data

<0:115.11.0-1.amzn2.0.1
  • H
User Interface (UI) Misrepresentation of Critical Information

<0:115.11.0-1.amzn2.0.1
  • H
Improper Check for Unusual or Exceptional Conditions

<0:115.11.0-1.amzn2.0.1
  • H
Improper Check for Certificate Revocation

<0:102.7.1-1.amzn2.0.1
  • H
Integer Overflow or Wraparound

<0:102.4.0-1.amzn2.0.1
  • H
Buffer Overflow

<0:115.9.0-1.amzn2.0.1
  • H
Cross-site Scripting (XSS)

<0:115.9.0-1.amzn2.0.1
  • H
Integer Overflow or Wraparound

<0:115.9.0-1.amzn2.0.1
  • H
CVE-2024-2616

<0:115.9.0-1.amzn2.0.1
  • H
The UI Performs the Wrong Action

<0:115.9.0-1.amzn2.0.1
  • H
Use After Free

<0:115.9.0-1.amzn2.0.1
  • L
Missing Encryption of Sensitive Data

<0:115.8.1-1.amzn2.0.1
  • H
Arbitrary Code Injection

<0:115.8.0-1.amzn2.0.1
  • H
The UI Performs the Wrong Action

<0:115.8.0-1.amzn2.0.1
  • H
Buffer Overflow

<0:115.8.0-1.amzn2.0.1
  • H
Improper Restriction of Rendered UI Layers or Frames

<0:115.8.0-1.amzn2.0.1
  • H
Improper Restriction of Rendered UI Layers or Frames

<0:115.8.0-1.amzn2.0.1
  • H
Out-of-bounds Read

<0:115.8.0-1.amzn2.0.1
  • H
The UI Performs the Wrong Action

<0:115.8.0-1.amzn2.0.1
  • H
The UI Performs the Wrong Action

<0:102.8.0-1.amzn2.0.1
  • M
Improper Input Validation

<0:115.7.0-1.amzn2.0.2
  • M
Out-of-bounds Write

<0:115.7.0-1.amzn2.0.2
  • M
Improper Restriction of Rendered UI Layers or Frames

<0:115.7.0-1.amzn2.0.2
  • M
Improper Input Validation

<0:115.7.0-1.amzn2.0.2
  • M
Improper Restriction of Rendered UI Layers or Frames

<0:115.7.0-1.amzn2.0.2
  • M
Inadequate Encryption Strength

<0:115.7.0-1.amzn2.0.2
  • M
Buffer Overflow

<0:115.7.0-1.amzn2.0.2
  • M
Improper Restriction of Rendered UI Layers or Frames

<0:115.7.0-1.amzn2.0.2
  • M
Improper Restriction of Rendered UI Layers or Frames

<0:115.7.0-1.amzn2.0.2
  • H
Heap-based Buffer Overflow

<0:115.6.0-1.amzn2.0.2
  • H
Improper Restriction of Rendered UI Layers or Frames

<0:115.5.0-1.amzn2.0.1
  • H
Heap-based Buffer Overflow

<0:115.6.0-1.amzn2.0.1
  • H
Buffer Overflow

<0:115.5.0-1.amzn2.0.1
  • H
Out-of-bounds Read

<0:115.5.0-1.amzn2.0.1
  • H
Heap-based Buffer Overflow

<0:115.6.0-1.amzn2.0.1
  • H
Buffer Overflow

<0:115.6.0-1.amzn2.0.1
  • H
Heap-based Buffer Overflow

<0:115.6.0-1.amzn2.0.1
  • H
Improper Verification of Cryptographic Signature

<0:115.6.0-1.amzn2.0.1
  • H
Improper Restriction of Rendered UI Layers or Frames

<0:115.5.0-1.amzn2.0.1
  • H
Directory Traversal

<0:115.5.0-1.amzn2.0.1
  • H
Use After Free

<0:115.6.0-1.amzn2.0.1
  • H
Improper Verification of Cryptographic Signature

<0:115.6.0-1.amzn2.0.1
  • H
Use After Free

<0:115.5.0-1.amzn2.0.1
  • H
Use After Free

<0:115.5.0-1.amzn2.0.1
  • H
Improper Input Validation

<0:115.6.0-1.amzn2.0.1
  • H
Improper Input Validation

<0:115.6.0-1.amzn2.0.1
  • H
Race Condition

<0:115.6.0-1.amzn2.0.1
  • H
Use After Free

<0:115.6.0-1.amzn2.0.1
  • H
Double Free

<0:102.10.0-1.amzn2.0.1
  • H
Memory Leak

<0:115.4.1-1.amzn2.0.1
  • H
Improper Restriction of Rendered UI Layers or Frames

<0:115.4.1-1.amzn2.0.1
  • H
Buffer Overflow

<0:115.4.1-1.amzn2.0.1
  • H
Multiple Interpretations of UI Input

<0:115.4.1-1.amzn2.0.1
  • H
Open Redirect

<0:115.4.1-1.amzn2.0.1
  • H
Product UI does not Warn User of Unsafe Actions

<0:115.4.1-1.amzn2.0.1
  • M
Improper Handling of Exceptional Conditions

<0:102.15.1-1.amzn2.0.2
  • H
Heap-based Buffer Overflow

<0:102.15.1-1.amzn2.0.1
  • H
Heap-based Buffer Overflow

<0:102.15.1-1.amzn2.0.1
  • H
Unrestricted Upload of File with Dangerous Type

<0:102.15.0-1.amzn2.0.1
  • H
Buffer Overflow

<0:102.15.0-1.amzn2.0.1
  • H
Buffer Overflow

<0:102.15.0-1.amzn2.0.1
  • H
Use After Free

<0:102.13.0-2.amzn2.0.1
  • H
Compilation with Insufficient Warnings or Errors

<0:102.13.0-2.amzn2.0.1
  • H
Buffer Overflow

<0:102.13.0-2.amzn2.0.1
  • H
Authentication Bypass

<0:102.13.0-2.amzn2.0.1
  • H
Use After Free

<0:102.13.0-2.amzn2.0.1
  • H
Improper Handling of Insufficient Permissions or Privileges

<0:102.11.0-1.amzn2.0.1
  • H
Resource Exhaustion

<0:102.11.0-1.amzn2.0.1
  • H
Insufficient Verification of Data Authenticity

<0:102.11.0-1.amzn2.0.1
  • H
Use of Uninitialized Variable

<0:102.11.0-1.amzn2.0.1
  • H
Buffer Overflow

<0:102.11.0-1.amzn2.0.1
  • H
User Interface (UI) Misrepresentation of Critical Information

<0:102.11.0-1.amzn2.0.1
  • H
Out-of-bounds Read

<0:102.11.0-1.amzn2.0.1
  • H
Resource Exhaustion

<0:102.10.0-1.amzn2.0.1
  • H
Failure to Sanitize Special Element

<0:102.10.0-1.amzn2.0.1
  • H
Reachable Assertion

<0:102.10.0-1.amzn2.0.1
  • H
Out-of-Bounds

<0:102.10.0-1.amzn2.0.1
  • H
Unrestricted Upload of File with Dangerous Type

<0:102.10.0-1.amzn2.0.1
  • H
Out-of-Bounds

<0:102.10.0-1.amzn2.0.1
  • H
Direct Request ('Forced Browsing')

<0:102.10.0-1.amzn2.0.1
  • H
Incorrect Calculation

<0:102.10.0-1.amzn2.0.1
  • H
Buffer Overflow

<0:102.10.0-1.amzn2.0.1
  • H
Product UI does not Warn User of Unsafe Actions

<0:102.10.0-1.amzn2.0.1
  • H
Arbitrary Code Injection

<0:102.9.0-1.amzn2.0.1
  • H
Incorrect Type Conversion or Cast

<0:102.9.0-1.amzn2.0.1
  • H
Information Exposure

<0:102.9.0-1.amzn2.0.1
  • H
Out-of-bounds Read

<0:102.9.0-1.amzn2.0.1
  • H
Buffer Overflow

<0:102.9.0-1.amzn2.0.1
  • H
Use After Free

<0:102.8.0-1.amzn2.0.1
  • H
Improper Handling of Alternate Encoding

<0:102.8.0-1.amzn2.0.1
  • H
Improper Restriction of Rendered UI Layers or Frames

<0:102.8.0-1.amzn2.0.1
  • H
Allocation of Resources Without Limits or Throttling

<0:102.8.0-1.amzn2.0.1
  • H
Incorrect Type Conversion or Cast

<0:102.8.0-1.amzn2.0.1
  • H
Use After Free

<0:102.8.0-1.amzn2.0.1
  • H
External Control of File Name or Path

<0:102.8.0-1.amzn2.0.1
  • H
Cross-site Scripting (XSS)

<0:102.8.0-1.amzn2.0.1
  • H
CVE-2023-25731

<0:102.8.0-1.amzn2.0.1
  • H
Out-of-Bounds

<0:102.8.0-1.amzn2.0.1
  • H
Incorrect Synchronization

<0:102.8.0-1.amzn2.0.1
  • H
Out-of-bounds Write

<0:102.8.0-1.amzn2.0.1
  • H
Buffer Overflow

<0:102.8.0-1.amzn2.0.1
  • H
Incorrect Regular Expression

<0:102.7.1-1.amzn2.0.1
  • H
Information Exposure

<0:102.7.1-1.amzn2.0.1
  • H
Out-of-Bounds

<0:68.10.0-1.amzn2
  • H
Arbitrary Command Injection

<0:102.7.1-1.amzn2.0.1
  • H
Buffer Overflow

<0:102.7.1-1.amzn2.0.1
  • H
Buffer Overflow

<0:102.7.1-1.amzn2.0.1
  • H
Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')

<0:102.7.1-1.amzn2.0.1
  • H
Use After Free

<0:102.7.1-1.amzn2.0.1
  • H
Information Exposure

<0:102.7.1-1.amzn2.0.1
  • H
CVE-2023-23602

<0:102.7.1-1.amzn2.0.1
  • H
Use After Free

<0:102.7.1-1.amzn2.0.1
  • H
Multiple Interpretations of UI Input

<0:102.7.1-1.amzn2.0.1
  • H
Improper Following of a Certificate's Chain of Trust

<0:68.10.0-1.amzn2
  • H
Out-of-Bounds

<0:102.7.1-1.amzn2.0.1
  • H
Use of Unmaintained Third Party Components

<0:102.7.1-1.amzn2.0.1
  • H
Insufficient UI Warning of Dangerous Operations

<0:102.7.1-1.amzn2.0.1
  • H
Inclusion of Functionality from Untrusted Control Sphere

<0:102.7.1-1.amzn2.0.1
  • H
Truncation of Security-relevant Information

<0:102.7.1-1.amzn2.0.1
  • H
Out-of-bounds Read

<0:102.7.1-1.amzn2.0.1
  • H
Out-of-bounds Write

<0:102.7.1-1.amzn2.0.1
  • H
Integer Overflow or Wraparound

<0:102.7.1-1.amzn2.0.1
  • H
Return of Wrong Status Code

<0:102.7.1-1.amzn2.0.1
  • H
Cross-site Scripting (XSS)

<0:102.7.1-1.amzn2.0.1
  • H
Buffer Overflow

<0:102.7.1-1.amzn2.0.1
  • H
Improper Restriction of Rendered UI Layers or Frames

<0:102.7.1-1.amzn2.0.1
  • H
Use After Free

<0:102.7.1-1.amzn2.0.1
  • H
Out-of-Bounds

<0:102.7.1-1.amzn2.0.1
  • H
Buffer Overflow

<0:102.7.1-1.amzn2.0.1
  • H
Use After Free

<0:68.10.0-1.amzn2
  • H
Information Exposure

<0:68.10.0-1.amzn2
  • H
Use After Free

<0:68.10.0-1.amzn2
  • H
Insufficient UI Warning of Dangerous Operations

<0:91.11.0-2.amzn2.0.1
  • H
Expected Behavior Violation

<0:102.4.0-1.amzn2.0.1
  • H
Inclusion of Functionality from Untrusted Control Sphere

<0:102.4.0-1.amzn2.0.1
  • H
Resource Exhaustion

<0:102.4.0-1.amzn2.0.1
  • H
Improper Authentication

<0:102.4.0-1.amzn2.0.1
  • H
Reliance on Cookies without Validation and Integrity Checking in a Security Decision

<0:102.4.0-1.amzn2.0.1
  • H
Use After Free

<0:102.4.0-1.amzn2.0.1
  • H
Improper Authentication

<0:102.4.0-1.amzn2.0.1
  • H
Buffer Overflow

<0:102.4.0-1.amzn2.0.1
  • H
Use After Free

<0:102.4.0-1.amzn2.0.1
  • H
Improper Restriction of Rendered UI Layers or Frames

<0:102.4.0-1.amzn2.0.1
  • H
Improper Restriction of Rendered UI Layers or Frames

<0:102.4.0-1.amzn2.0.1
  • H
Improper Authentication

<0:102.4.0-1.amzn2.0.1
  • H
Buffer Overflow

<0:102.4.0-1.amzn2.0.1
  • H
Buffer Overflow

<0:102.4.0-1.amzn2.0.1
  • H
Improper Handling of Inconsistent Structural Elements

<0:102.4.0-1.amzn2.0.1
  • H
Improper Restriction of Rendered UI Layers or Frames

<0:102.4.0-1.amzn2.0.1
  • H
The UI Performs the Wrong Action

<0:102.4.0-1.amzn2.0.1
  • H
Information Exposure

<0:102.4.0-1.amzn2.0.1
  • H
Improper Input Validation

<0:102.4.0-1.amzn2.0.1
  • H
Use After Free

<0:91.13.0-1.amzn2.0.1
  • H
Buffer Overflow

<0:91.13.0-1.amzn2.0.1
  • H
Buffer Overflow

<0:91.13.0-1.amzn2.0.1
  • H
Cross-site Scripting (XSS)

<0:91.13.0-1.amzn2.0.1
  • H
Improper Restriction of Rendered UI Layers or Frames

<0:91.13.0-1.amzn2.0.1
  • H
Buffer Overflow

<0:91.13.0-1.amzn2.0.1
  • H
Improper Restriction of Rendered UI Layers or Frames

<0:91.13.0-1.amzn2.0.1
  • H
Product UI does not Warn User of Unsafe Actions

<0:91.13.0-1.amzn2.0.1
  • H
Incorrect Permission Assignment for Critical Resource

<0:91.6.0-1.amzn2.0.1
  • H
Buffer Overflow

<0:91.6.0-1.amzn2.0.1
  • H
Buffer Overflow

<0:91.11.0-2.amzn2.0.1
  • H
Inclusion of Functionality from Untrusted Control Sphere

<0:91.11.0-2.amzn2.0.1
  • H
Improper Restriction of Rendered UI Layers or Frames

<0:91.11.0-2.amzn2.0.1
  • H
Use of Uninitialized Variable

<0:91.11.0-2.amzn2.0.1
  • H
Allocation of Resources Without Limits or Throttling

<0:91.11.0-2.amzn2.0.1
  • H
Inclusion of Functionality from Untrusted Control Sphere

<0:91.11.0-2.amzn2.0.1
  • H
Acceptance of Extraneous Untrusted Data With Trusted Data

<0:91.11.0-2.amzn2.0.1
  • H
Buffer Overflow

<0:91.11.0-2.amzn2.0.1
  • H
Buffer Overflow

<0:91.6.0-1.amzn2.0.1
  • H
Improper Restriction of Rendered UI Layers or Frames

<0:91.6.0-1.amzn2.0.1
  • H
Inclusion of Functionality from Untrusted Control Sphere

<0:91.6.0-1.amzn2.0.1
  • H
Inclusion of Functionality from Untrusted Control Sphere

<0:91.6.0-1.amzn2.0.1
  • H
Use After Free

<0:91.6.0-1.amzn2.0.1
  • H
Cleartext Transmission of Sensitive Information

<0:91.6.0-1.amzn2.0.1
  • H
Buffer Overflow

<0:91.6.0-1.amzn2.0.1
  • H
Use After Free

<0:91.6.0-1.amzn2.0.1
  • H
Use After Free

<0:91.6.0-1.amzn2.0.1
  • H
Buffer Overflow

<0:91.6.0-1.amzn2.0.1
  • H
Arbitrary Code Injection

<0:91.6.0-1.amzn2.0.1
  • H
Inclusion of Functionality from Untrusted Control Sphere

<0:91.6.0-1.amzn2.0.1
  • H
Improper Restriction of Rendered UI Layers or Frames

<0:91.6.0-1.amzn2.0.1
  • H
Inclusion of Functionality from Untrusted Control Sphere

<0:91.6.0-1.amzn2.0.1
  • H
Improper Restriction of Rendered UI Layers or Frames

<0:91.6.0-1.amzn2.0.1
  • H
Improper Restriction of Rendered UI Layers or Frames

<0:91.6.0-1.amzn2.0.1
  • H
NULL Pointer Dereference

<0:91.6.0-1.amzn2.0.1
  • H
Buffer Overflow

<0:91.6.0-1.amzn2.0.1
  • H
Improper Restriction of Rendered UI Layers or Frames

<0:91.6.0-1.amzn2.0.1
  • H
Buffer Overflow

<0:91.6.0-1.amzn2.0.1
  • H
Improper Restriction of Rendered UI Layers or Frames

<0:91.6.0-1.amzn2.0.1
  • H
Buffer Overflow

<0:91.6.0-1.amzn2.0.1
  • H
Improper Restriction of Rendered UI Layers or Frames

<0:91.6.0-1.amzn2.0.1
  • H
Out-of-Bounds

<0:91.6.0-1.amzn2.0.1
  • H
Improper Restriction of Rendered UI Layers or Frames

<0:91.6.0-1.amzn2.0.1
  • H
Use After Free

<0:91.6.0-1.amzn2.0.1
  • C
Access of Resource Using Incompatible Type ('Type Confusion')

<0:91.9.1-1.amzn2.0.1
  • C
Access of Resource Using Incompatible Type ('Type Confusion')

<0:91.9.1-1.amzn2.0.1
  • H
Buffer Overflow

<0:91.8.0-1.amzn2.0.1
  • H
Time-of-check Time-of-use (TOCTOU)

<0:91.7.0-2.amzn2.0.1
  • H
Use After Free

<0:91.7.0-2.amzn2.0.1
  • H
Use After Free

<0:91.7.0-2.amzn2.0.1
  • H
The UI Performs the Wrong Action

<0:91.7.0-2.amzn2.0.1
  • H
Out-of-bounds Write

<0:91.7.0-2.amzn2.0.1
  • H
Use After Free

<0:91.8.0-1.amzn2.0.1
  • H
Resource Exhaustion

<0:91.8.0-1.amzn2.0.1
  • H
Use After Free

<0:91.8.0-1.amzn2.0.1
  • H
Out-of-bounds Read

<0:91.8.0-1.amzn2.0.1
  • H
Improper Restriction of Rendered UI Layers or Frames

<0:91.8.0-1.amzn2.0.1
  • H
Out-of-bounds Write

<0:91.8.0-1.amzn2.0.1
  • H
Improper Certificate Validation

<0:91.8.0-1.amzn2.0.1
  • H
Use After Free

<0:91.8.0-1.amzn2.0.1
  • H
Use After Free

<0:91.7.0-2.amzn2.0.1
  • H
Improper Preservation of Permissions

<0:91.7.0-2.amzn2.0.1
  • H
Inappropriate Encoding for Output Context

<0:91.7.0-2.amzn2.0.1
  • H
Integer Overflow or Wraparound

<0:91.7.0-2.amzn2.0.1
  • H
Incorrect Behavior Order: Early Validation

<0:91.7.0-2.amzn2.0.1
  • H
Incorrect Behavior Order: Early Validation

<0:91.7.0-2.amzn2.0.1
  • H
Arbitrary Code Injection

<0:91.6.0-1.amzn2.0.1
  • H
Inclusion of Functionality from Untrusted Control Sphere

<0:91.6.0-1.amzn2.0.1
  • H
Buffer Overflow

<0:91.6.0-1.amzn2.0.1
  • H
Buffer Overflow

<0:91.6.0-1.amzn2.0.1
  • H
Improper Restriction of Rendered UI Layers or Frames

<0:91.6.0-1.amzn2.0.1
  • H
Improper Restriction of Rendered UI Layers or Frames

<0:91.6.0-1.amzn2.0.1
  • H
Improper Restriction of Rendered UI Layers or Frames

<0:91.6.0-1.amzn2.0.1
  • H
Improper Restriction of Rendered UI Layers or Frames

<0:91.6.0-1.amzn2.0.1
  • H
Use After Free

<0:91.6.0-1.amzn2.0.1
  • H
Inclusion of Functionality from Untrusted Control Sphere

<0:91.6.0-1.amzn2.0.1
  • H
NULL Pointer Dereference

<0:91.6.0-1.amzn2.0.1
  • H
Use After Free

<0:91.6.0-1.amzn2.0.1
  • H
Inclusion of Functionality from Untrusted Control Sphere

<0:91.6.0-1.amzn2.0.1
  • H
Improper Restriction of Rendered UI Layers or Frames

<0:91.6.0-1.amzn2.0.1
  • H
Inclusion of Functionality from Untrusted Control Sphere

<0:91.6.0-1.amzn2.0.1
  • H
Improper Restriction of Rendered UI Layers or Frames

<0:91.6.0-1.amzn2.0.1
  • H
Buffer Overflow

<0:91.6.0-1.amzn2.0.1
  • H
Improper Restriction of Rendered UI Layers or Frames

<0:91.6.0-1.amzn2.0.1
  • H
Buffer Overflow

<0:91.6.0-1.amzn2.0.1
  • H
Integer Overflow or Wraparound

<0:91.7.0-2.amzn2.0.1
  • H
Out-of-Bounds

<0:78.14.0-1.amzn2.0.1
  • H
Out-of-Bounds

<0:78.14.0-1.amzn2.0.1
  • H
Out-of-bounds Write

<0:78.13.0-1.amzn2.0.1
  • H
Use After Free

<0:78.13.0-1.amzn2.0.1
  • H
Out-of-Bounds

<0:78.13.0-1.amzn2.0.1
  • H
Use After Free

<0:78.13.0-1.amzn2.0.1
  • H
Out-of-bounds Write

<0:78.13.0-1.amzn2.0.1
  • H
Use After Free

<0:78.13.0-1.amzn2.0.1
  • H
Out-of-Bounds

<0:78.13.0-1.amzn2.0.1
  • H
Missing Initialization of Resource

<0:78.13.0-1.amzn2.0.1
  • H
Race Condition

<0:78.13.0-1.amzn2.0.1
  • H
Insufficient Verification of Data Authenticity

<0:78.13.0-1.amzn2.0.1
  • H
Insufficiently Protected Credentials

<0:78.11.0-1.amzn2.0.1
  • H
Buffer Overflow

<0:78.11.0-1.amzn2.0.1
  • H
Improper Verification of Cryptographic Signature

<0:78.11.0-1.amzn2.0.1
  • H
Insufficient Verification of Data Authenticity

<0:78.10.0-1.amzn2.0.1
  • H
Improper Verification of Cryptographic Signature

<0:78.10.0-1.amzn2.0.1
  • H
Use of a Broken or Risky Cryptographic Algorithm

<0:78.10.0-1.amzn2.0.1
  • H
Improper Privilege Management

<0:78.10.0-1.amzn2.0.1
  • H
Incorrect Calculation

<0:78.10.0-1.amzn2.0.1
  • H
Time-of-check Time-of-use (TOCTOU)

<0:78.10.0-1.amzn2.0.1
  • H
Operation on a Resource after Expiration or Release

<0:78.10.0-1.amzn2.0.1
  • H
Arbitrary Argument Injection

<0:78.10.0-1.amzn2.0.1
  • H
Integer Overflow or Wraparound

<0:78.10.0-1.amzn2.0.1
  • H
CVE-2021-23991

<0:78.10.0-1.amzn2.0.1
  • H
Out-of-Bounds

<0:78.9.0-3.amzn2
  • H
Information Exposure

<0:78.10.0-1.amzn2.0.1
  • H
Out-of-bounds Write

<0:78.10.0-1.amzn2.0.1
  • H
Out-of-Bounds

<0:78.9.0-3.amzn2
  • H
Authentication Bypass

<0:78.9.0-3.amzn2
  • H
Inadequate Encryption Strength

<0:78.9.0-3.amzn2
  • H
CVE-2021-23969

<0:78.8.0-1.amzn2
  • H
Information Exposure

<0:78.8.0-1.amzn2
  • H
Information Exposure

<0:78.8.0-1.amzn2
  • H
CVE-2021-23978

<0:78.8.0-1.amzn2
  • H
Out-of-Bounds

<0:78.7.0-1.amzn2
  • H
CVE-2020-26976

<0:78.7.0-1.amzn2
  • H
CVE-2021-23960

<0:78.7.0-1.amzn2
  • H
Access of Resource Using Incompatible Type ('Type Confusion')

<0:78.7.0-1.amzn2
  • H
Improper Enforcement of Message Integrity During Transmission in a Communication Channel

<0:78.7.0-1.amzn2
  • H
CVE-2021-23953

<0:78.7.0-1.amzn2
  • C
Out-of-bounds Write

<0:78.6.1-1.amzn2
  • H
CVE-2020-16012

<0:78.6.0-1.amzn2
  • H
CVE-2020-26973

<0:78.6.0-1.amzn2
  • H
Cross-site Scripting (XSS)

<0:78.6.0-1.amzn2
  • H
Out-of-bounds Write

<0:78.6.0-1.amzn2
  • H
Improper Cross-boundary Removal of Sensitive Data

<0:78.6.0-1.amzn2
  • H
Out-of-bounds Write

<0:78.6.0-1.amzn2
  • H
CVE-2020-26961

<0:78.6.0-1.amzn2
  • H
CVE-2020-26978

<0:78.6.0-1.amzn2
  • H
Out-of-bounds Write

<0:78.6.0-1.amzn2
  • H
Use After Free

<0:78.6.0-1.amzn2
  • H
CVE-2020-35111

<0:78.6.0-1.amzn2
  • H
Out-of-bounds Write

<0:78.6.0-1.amzn2
  • H
Use After Free

<0:78.6.0-1.amzn2
  • H
Improper Restriction of Rendered UI Layers or Frames

<0:78.6.0-1.amzn2
  • H
Use of Uninitialized Resource

<0:78.6.0-1.amzn2
  • H
Cross-site Scripting (XSS)

<0:78.6.0-1.amzn2
  • H
Cross-site Scripting (XSS)

<0:78.6.0-1.amzn2
  • C
Use After Free

<0:78.4.3-1.amzn2.0.1
  • C
Out-of-bounds Write

<0:78.4.3-1.amzn2.0.1
  • C
Use After Free

<0:78.4.3-1.amzn2.0.1
  • C
Use After Free

<0:78.4.3-1.amzn2.0.1
  • C
Cross-site Scripting (XSS)

<0:78.4.3-1.amzn2.0.1
  • C
Open Redirect

<0:78.4.3-1.amzn2.0.1
  • C
Out-of-bounds Write

<0:78.4.3-1.amzn2.0.1
  • H
Incorrect Authorization

<0:68.12.0-1.amzn2
  • H
Use After Free

<0:68.12.0-1.amzn2
  • H
Out-of-bounds Write

<0:68.11.0-1.amzn2
  • H
Information Exposure

<0:68.11.0-1.amzn2
  • H
Out-of-bounds Write

<0:68.11.0-1.amzn2
  • H
Origin Validation Error

<0:68.11.0-1.amzn2
  • H
Out-of-bounds Write

<0:68.9.0-1.amzn2
  • H
Out-of-bounds Read

<0:68.9.0-1.amzn2
  • H
Race Condition

<0:68.9.0-1.amzn2
  • H
Use After Free

<0:68.9.0-1.amzn2
  • H
Improper Certificate Validation

<0:68.9.0-1.amzn2
  • H
Insufficient Verification of Data Authenticity

<0:68.9.0-1.amzn2
  • H
Race Condition

<0:68.9.0-1.amzn2
  • H
Out-of-bounds Write

<0:68.9.0-1.amzn2
  • H
Cleartext Transmission of Sensitive Information

<0:68.9.0-1.amzn2
  • C
Out-of-bounds Write

<0:68.8.0-1.amzn2
  • C
Out-of-bounds Write

<0:68.8.0-1.amzn2
  • C
Origin Validation Error

<0:68.8.0-1.amzn2
  • C
Race Condition

<0:68.8.0-1.amzn2
  • C
Out-of-bounds Write

<0:68.8.0-1.amzn2
  • C
Out-of-bounds Write

<0:68.8.0-1.amzn2
  • C
Use of Uninitialized Resource

<0:68.8.0-1.amzn2
  • C
Race Condition

<0:68.8.0-1.amzn2
  • C
Out-of-bounds Write

<0:68.8.0-1.amzn2
  • C
Directory Traversal

<0:68.8.0-1.amzn2
  • H
Out-of-bounds Read

<0:68.6.0-1.amzn2.0.1
  • H
Out-of-bounds Write

<0:68.6.0-1.amzn2.0.1
  • H
OS Command Injection

<0:68.6.0-1.amzn2.0.1
  • H
Information Exposure

<0:68.6.0-1.amzn2.0.1
  • H
Use After Free

<0:68.6.0-1.amzn2.0.1
  • H
Out-of-bounds Read

<0:68.6.0-1.amzn2.0.1
  • H
Cleartext Storage of Sensitive Information

<0:68.5.0-1.amzn2.0.1
  • H
Use After Free

<0:68.6.0-1.amzn2.0.1
  • H
Use of Uninitialized Resource

<0:68.5.0-1.amzn2.0.1
  • H
Cross-site Scripting (XSS)

<0:68.5.0-1.amzn2.0.1
  • H
NULL Pointer Dereference

<0:68.5.0-1.amzn2.0.1
  • H
Out-of-bounds Write

<0:68.5.0-1.amzn2.0.1
  • H
Use of Uninitialized Resource

<0:68.5.0-1.amzn2.0.1
  • H
Access of Resource Using Incompatible Type ('Type Confusion')

<0:68.4.1-2.amzn2.0.1
  • H
Cross-site Scripting (XSS)

<0:68.4.1-2.amzn2.0.1
  • H
Out-of-bounds Write

<0:68.4.1-2.amzn2.0.1
  • H
Cross-site Scripting (XSS)

<0:68.4.1-2.amzn2.0.1
  • H
Access of Resource Using Incompatible Type ('Type Confusion')

<0:68.4.1-2.amzn2.0.1
  • H
Use After Free

<0:68.3.0-1.amzn2.0.1
  • H
Race Condition

<0:68.3.0-1.amzn2.0.1
  • H
Race Condition

<0:68.3.0-1.amzn2.0.1
  • H
Out-of-bounds Write

<0:68.3.0-1.amzn2.0.1
  • H
Out-of-bounds Read

<0:68.2.0-1.amzn2.0.1
  • H
Out-of-bounds Write

<0:68.2.0-1.amzn2.0.1
  • H
Cross-site Scripting (XSS)

<0:68.2.0-1.amzn2.0.1
  • H
Out-of-bounds Write

<0:68.3.0-1.amzn2.0.1
  • H
Origin Validation Error

<0:68.2.0-1.amzn2.0.1
  • H
Race Condition

<0:68.2.0-1.amzn2.0.1
  • H
Buffer Overflow

<0:68.2.0-1.amzn2.0.1
  • H
Use After Free

<0:68.2.0-1.amzn2.0.1
  • H
Out-of-bounds Write

<0:68.2.0-1.amzn2.0.1
  • H
Out-of-bounds Write

<0:68.2.0-1.amzn2.0.1
  • H
Use After Free

<0:60.9.0-1.amzn2.0.1
  • H
Out-of-bounds Write

<0:60.9.0-1.amzn2.0.1
  • H
Cleartext Transmission of Sensitive Information

<0:60.9.0-1.amzn2.0.1
  • H
Use After Free

<0:60.9.0-1.amzn2.0.1
  • H
Information Exposure

<0:60.9.0-1.amzn2.0.1
  • H
Inclusion of Functionality from Untrusted Control Sphere

<0:60.9.0-1.amzn2.0.1
  • H
Cross-site Scripting (XSS)

<0:60.9.0-1.amzn2.0.1
  • C
CVE-2019-11730

<0:60.8.0-1.amzn2.0.1
  • C
CVE-2019-11711

<0:60.8.0-1.amzn2.0.1
  • C
Cross-site Scripting (XSS)

<0:60.8.0-1.amzn2.0.1
  • C
Arbitrary Code Injection

<0:60.8.0-1.amzn2.0.1
  • C
Use After Free

<0:60.8.0-1.amzn2.0.1
  • C
Out-of-bounds Write

<0:60.8.0-1.amzn2.0.1
  • C
Improper Encoding or Escaping of Output

<0:60.8.0-1.amzn2.0.1
  • C
Access of Resource Using Incompatible Type ('Type Confusion')

<0:60.7.2-2.amzn2.0.1
  • C
Out-of-bounds Write

<0:60.7.2-2.amzn2.0.1
  • C
Improper Input Validation

<0:60.7.2-2.amzn2.0.1
  • C
Out-of-bounds Read

<0:60.7.2-2.amzn2.0.1
  • C
Out-of-bounds Read

<0:60.7.2-2.amzn2.0.1
  • C
Access of Resource Using Incompatible Type ('Type Confusion')

<0:60.7.2-2.amzn2.0.1
  • C
Origin Validation Error

<0:60.7.0-1.amzn2.0.1
  • C
Improper Input Validation

<0:60.7.0-1.amzn2.0.1
  • C
Use After Free

<0:60.7.0-1.amzn2.0.1
  • C
Access of Resource Using Incompatible Type ('Type Confusion')

<0:60.7.0-1.amzn2.0.1
  • C
Use After Free

<0:60.7.0-1.amzn2.0.1
  • C
Information Exposure

<0:60.7.0-1.amzn2.0.1
  • C
Out-of-bounds Write

<0:60.7.0-1.amzn2.0.1
  • C
Use After Free

<0:60.7.0-1.amzn2.0.1
  • C
Out-of-bounds Write

<0:60.7.0-1.amzn2.0.1
  • C
Origin Validation Error

<0:60.7.0-1.amzn2.0.1
  • C
Out-of-bounds Read

<0:60.7.0-1.amzn2.0.1
  • C
Use After Free

<0:60.7.0-1.amzn2.0.1
  • C
Out-of-bounds Write

<0:60.6.1-1.amzn2.0.1
  • C
Out-of-bounds Write

<0:60.6.1-1.amzn2.0.1
  • C
CVE-2018-18506

<0:60.6.1-1.amzn2.0.1
  • C
Out-of-Bounds

<0:60.6.1-1.amzn2.0.1
  • C
Reachable Assertion

<0:60.6.1-1.amzn2.0.1
  • C
Use After Free

<0:60.6.1-1.amzn2.0.1
  • C
Access of Resource Using Incompatible Type ('Type Confusion')

<0:60.6.1-1.amzn2.0.1
  • C
Out-of-bounds Write

<0:60.6.1-1.amzn2.0.1
  • C
Use After Free

<0:60.6.1-1.amzn2.0.1
  • C
Access of Resource Using Incompatible Type ('Type Confusion')

<0:60.6.1-1.amzn2.0.1
  • C
Out-of-Bounds

<0:60.5.0-1.amzn2.0.1
  • C
Out-of-bounds Read

<0:60.5.0-1.amzn2.0.1
  • C
Use After Free

<0:60.5.0-1.amzn2.0.1
  • C
Out-of-bounds Write

<0:60.5.0-1.amzn2.0.1
  • C
Out-of-Bounds

<0:60.5.0-1.amzn2.0.1
  • C
Origin Validation Error

<0:60.5.0-1.amzn2.0.1
  • C
Out-of-bounds Write

<0:60.2.1-4.amzn2.0.1
  • C
Out-of-Bounds

<0:60.2.1-4.amzn2.0.1
  • C
Out-of-Bounds

<0:60.2.1-4.amzn2.0.1
  • C
CVE-2018-12392

<0:60.2.1-4.amzn2.0.1
  • C
Information Exposure

<0:52.9.1-1.amzn2
  • C
Information Exposure

<0:52.9.1-1.amzn2
  • C
Out-of-bounds Read

<0:52.9.1-1.amzn2
  • C
Out-of-Bounds

<0:52.9.1-1.amzn2
  • C
Use After Free

<0:52.9.1-1.amzn2
  • C
Information Exposure

<0:52.9.1-1.amzn2
  • C
Information Exposure

<0:52.9.1-1.amzn2
  • C
Out-of-Bounds

<0:52.9.1-1.amzn2
  • C
Integer Overflow or Wraparound

<0:52.9.1-1.amzn2
  • C
Use After Free

<0:52.9.1-1.amzn2
  • C
Cross-site Request Forgery (CSRF)

<0:52.9.1-1.amzn2
  • C
Use After Free

<0:52.8.0-1.amzn2
  • C
Improper Input Validation

<0:52.8.0-1.amzn2
  • C
Out-of-Bounds

<0:52.8.0-1.amzn2
  • C
Inadequate Encryption Strength

<0:52.8.0-1.amzn2
  • C
Out-of-Bounds

<0:52.8.0-1.amzn2
  • C
CVE-2018-5168

<0:52.8.0-1.amzn2
  • C
Missing Encryption of Sensitive Data

<0:52.8.0-1.amzn2
  • C
Out-of-bounds Write

<0:52.8.0-1.amzn2
  • C
Use After Free

<0:52.8.0-1.amzn2
  • C
Out-of-Bounds

<0:52.8.0-1.amzn2
  • C
Improper Input Validation

<0:52.8.0-1.amzn2
  • C
Missing Encryption of Sensitive Data

<0:52.8.0-1.amzn2