Package impact
Go / github.com/aws/aws-sdk-go
| CVE | Severity | CVSS | Risk | Flags | OS | Vendor | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2022-2582 | unknown | — | — | 4y ago | The AWS S3 Crypto SDK sends an unencrypted hash of the plaintext alongside the ciphertext as a metadata field. This hash can be used to brute force the plaintext, if the hash is readable to the attac… | |||
| CVE-2020-8911 | unknown | — | — | 4y ago | CBC padding oracle issue in AWS S3 Crypto SDK for golang in github.com/aws/aws-sdk-go | |||
| CVE-2020-8912 | unknown | — | — | 4y ago | In-band key negotiation issue in AWS S3 Crypto SDK for golang in github.com/aws/aws-sdk-go |