ACK Detected Controllers CVEs #2552
Description
| CVE ID | Type | Severity | Installed Version | Fixed Version | Affected Controllers | Title |
|---|---|---|---|---|---|---|
| CVE-2025-4673 | gobinary | MEDIUM | 1.24.3 | 1.23.10, 1.24.4 | [ecs eks elasticache iam lambda mq networkfirewall kafka acmpca applicationautoscaling cloudfront ecr memorydb recyclebin ecrpublic eventbridge organizations route53 sagemaker ses apigatewayv2 cloudtrail kms keyspaces ram sns sqs ssm codeartifact cognitoidentityprovider kinesis opensearchservice route53resolver s3 wafv2 documentdb acm efs elbv2 prometheusservice athena ec2 emrcontainers pipes rds s3control cloudwatch apigateway bedrockagent dynamodb sfn cloudwatchlogs] | net/http: Sensitive headers not cleared on cross-origin redirect in net/http |
| CVE-2025-22874 | gobinary | HIGH | 1.24.3 | 1.24.4 | [ecs eks elasticache iam lambda mq networkfirewall kafka acmpca applicationautoscaling cloudfront ecr memorydb recyclebin ecrpublic eventbridge organizations route53 sagemaker ses apigatewayv2 cloudtrail kms keyspaces ram sns sqs ssm codeartifact cognitoidentityprovider kinesis opensearchservice route53resolver s3 wafv2 documentdb acm efs elbv2 prometheusservice athena ec2 emrcontainers pipes rds s3control cloudwatch apigateway bedrockagent dynamodb sfn cloudwatchlogs] | crypto/x509: Usage of ExtKeyUsageAny disables policy validation in crypto/x509 |
| CVE-2025-0913 | gobinary | MEDIUM | 1.24.3 | 1.23.10, 1.24.4 | [ecs eks elasticache iam lambda mq networkfirewall kafka acmpca applicationautoscaling cloudfront ecr memorydb recyclebin ecrpublic eventbridge organizations route53 sagemaker ses apigatewayv2 cloudtrail kms keyspaces ram sns sqs ssm codeartifact cognitoidentityprovider kinesis opensearchservice route53resolver s3 wafv2 documentdb acm efs elbv2 prometheusservice athena ec2 emrcontainers pipes rds s3control cloudwatch apigateway bedrockagent dynamodb sfn cloudwatchlogs] | Inconsistent handling of O_CREATE |