CVE-2025-5277 | alexei-led aws-mcp-server up to 1.2.x os command injection

Inserito da Angelo Barbosa | Mag 28, 2025 | CVE

A vulnerability has been found in alexei-led aws-mcp-server up to 1.2.x and classified as critical. Affected by this vulnerability is an unknown functionality. The manipulation leads to os command injection.

This vulnerability is known as CVE-2025-5277. The attack can be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2025-5277 | alexei-led aws-mcp-server up to 1.2.x os command injection

Post correlati

CVE-2024-56629 | Linux Kernel up to 6.12.4 wacom null pointer dereference

CVE-2024-39567 | Siemens SINEMA Remote Connect Client up to 3.2 Configuration command injection (ssa-868282)

CVE-2024-9054 | Microchip TimeProvider 4100 up to 2.4.6 Configuration Module os command injection

CVE-2025-20927 | Samsung Notes up to 4.4.21.62 out-of-bounds