soci-snapshotter vulnerabilities

Direct Vulnerabilities

Known vulnerabilities in the soci-snapshotter package. This does not include vulnerabilities belonging to this package’s dependencies.

Snyk's AI Trust Platform automatically finds the best upgrade path and integrates with your development workflows. Secure your code at zero cost.

Vulnerability	Vulnerable Version
H OS Command Injection	<0:0.12.0-1.amzn2023.0.3
H Allocation of Resources Without Limits or Throttling	<0:0.12.0-1.amzn2023.0.3
H CVE-2025-68121	<0:0.12.0-1.amzn2023.0.3
H Allocation of Resources Without Limits or Throttling	<0:0.12.0-1.amzn2023.0.3
H Arbitrary Argument Injection	<0:0.12.0-1.amzn2023.0.3
H CVE-2025-61730	<0:0.12.0-1.amzn2023.0.3
M Improper Certificate Validation	<0:0.12.0-1.amzn2023.0.2
M Excessive Platform Resource Consumption within a Loop	<0:0.12.0-1.amzn2023.0.2
H Allocation of Resources Without Limits or Throttling	<0:0.11.1-1.amzn2023.0.3
H Improper Output Neutralization for Logs	<0:0.11.1-1.amzn2023.0.3
H CVE-2025-58186	<0:0.11.1-1.amzn2023.0.3
H Allocation of Resources Without Limits or Throttling	<0:0.11.1-1.amzn2023.0.3
H Allocation of Resources Without Limits or Throttling	<0:0.11.1-1.amzn2023.0.3
H Reachable Assertion	<0:0.11.1-1.amzn2023.0.3
H Allocation of Resources Without Limits or Throttling	<0:0.11.1-1.amzn2023.0.3
H Improper Validation of Syntactic Correctness of Input	<0:0.11.1-1.amzn2023.0.3
H Creation of Immutable Text Using String Concatenation	<0:0.11.1-1.amzn2023.0.3
H Allocation of Resources Without Limits or Throttling	<0:0.11.1-1.amzn2023.0.3
M CVE-2025-4673	<0:0.9.0-1.amzn2023.0.4
M Improper Certificate Validation	<0:0.9.0-1.amzn2023.0.4
H Cross-site Scripting (XSS)	<0:0.9.0-1.amzn2023.0.3
H HTTP Request Smuggling	<0:0.9.0-1.amzn2023.0.3
M Allocation of Resources Without Limits or Throttling	<0:0.9.0-1.amzn2023.0.1