An Amazon Web Services (AWS) developer who does not specify the --owners flag when describing images via AWS CLI, and therefore not properly validating source software per AWS recommended security best practices, may unintentionally load an undesired and potentially malicious Amazon Machine Image (AMI) from the uncurated public community AMI catalog.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2018-08-25T00:00:00
Updated: 2024-08-05T10:10:05.047Z
Reserved: 2018-08-24T00:00:00
Link: CVE-2018-15869
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2018-08-25T00:29:00.227
Modified: 2019-10-03T00:03:26.223
Link: CVE-2018-15869
Redhat