CVE-2025-5277 | alexei-led aws-mcp-server up to 1.2.x os command injection

Inserito da Angelo Barbosa | Mag 28, 2025 | CVE

A vulnerability has been found in alexei-led aws-mcp-server up to 1.2.x and classified as critical. Affected by this vulnerability is an unknown functionality. The manipulation leads to os command injection.

This vulnerability is known as CVE-2025-5277. The attack can be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2025-5277 | alexei-led aws-mcp-server up to 1.2.x os command injection

Post correlati

CVE-2025-1135 | ChurchCRM up to 5.13.0 sql injection (Issue 7254)

CVE-2023-50772 | Dingding JSON Pusher Plugin up to 2.0 on Jenkins Controller File System permission

CVE-2023-4566 | Huawei HarmonyOS/EMUI authentication spoofing

CVE-2024-25443 | Hugin 2022.0.0 Image linkWith use after free