CNNVD-202507-3038 Information

CNNVD ID

CNNVD-202507-3038

Related CVE

CVE-2025-8069

• CNNVD Published: 2025-07-23

Description (Chinese)

Amazon AWS VPN Client是美国亚马逊（Amazon）公司的一种完全托管的远程访问 VPN 解决方案。 Amazon AWS VPN Client 5.2.2之前版本存在安全漏洞，该漏洞源于安装过程中引用未受保护的OpenSSL配置文件，可能导致任意代码执行。

Description (English)

Amazon AWS VPN Clinic is a fully hosted remote access VPN solution for Amazon America. There was a security loophole in the previous version of Amazon AWS VPN Clinic 5.2.2, which originated from the use of unprotected OpenSSL profiles during installation, which could lead to arbitrary code execution.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

亚马逊

Published

2025-07-23

Last Modified

2026-02-24

References

https://aws.amazon.com/security/security-bulletins/AWS-2025-014/ https://access.redhat.com/security/cve/cve-2025-8069

Patch

https://aws.amazon.com/cn/vpn/client-vpn/