CVE-2025-12779 | Amazon WorkSpaces Client up to 2024.8 on Linux Authentication Token exposure of sensitive system information to an unauthorized control sphere (AWS-2025-025)

Inserito da Angelo Barbosa | Nov 6, 2025 | CVE

A vulnerability classified as problematic was found in Amazon WorkSpaces Client up to 2024.8 on Linux. The impacted element is an unknown function of the component Authentication Token Handler. The manipulation results in exposure of sensitive system information to an unauthorized control sphere.

This vulnerability was named CVE-2025-12779. The attack needs to be approached locally. There is no available exploit.

Upgrading the affected component is advised.

CVE-2025-12779 | Amazon WorkSpaces Client up to 2024.8 on Linux Authentication Token exposure of sensitive system information to an unauthorized control sphere (AWS-2025-025)

Post correlati

CVE-2025-46178 | CloudClassroom PHP Project askquery.php eid cross site scripting

CVE-2024-31174 | Open Networking Foundation libfluid 0.1.0 unpack out-of-bounds

CVE-2025-23975 | Botnet Attack Blocker Plugin up to 2.0.0 on WordPress cross site scripting

CVE-2025-7586 | Tenda AC500 2.0.1.9(1307) /goform/setWtpData formSetAPCfg radio_2g_1 stack-based overflow