An Amazon Web Services (AWS) developer who does not specify the --owners flag when describing images via AWS CLI, and therefore not properly validating source software per AWS recommended security best practices, may unintentionally load an undesired and potentially malicious Amazon Machine Image (AMI) from the uncurated public community AMI catalog.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2018-08-25T00:00:00

Updated: 2024-08-05T10:10:05.047Z

Reserved: 2018-08-24T00:00:00

Link: CVE-2018-15869

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Analyzed

Published: 2018-08-25T00:29:00.227

Modified: 2019-10-03T00:03:26.223

Link: CVE-2018-15869

cve-icon Redhat

Severity : Moderate

Publid Date: 2018-08-14T00:00:00Z

Links: CVE-2018-15869 - Bugzilla