CNNVD-202508-1718 Information
CNNVD ID
CNNVD-202508-1718
Related CVE
- CNNVD Published: 2025-08-14
Description (Chinese)
Amazon ECS Container Agent是Amazon Web Services开源的一个弹性容器服务代理软件。 Amazon ECS Container Agent存在安全漏洞,该漏洞源于在某些条件下,内省服务器可以被同一安全组中的其他实例访问。
Description (English)
Amazon ECS Container Agent is an elastic container service agent at the Amazon Web Services Open Source. Amazon ECS Container Agent had a security loophole, which stemmed from conditions under which internal provincial servers could be accessed by other examples in the same security unit.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
Amazon Web Services
Published
2025-08-14
Last Modified
2026-02-24
References
https://github.com/aws/amazon-ecs-agent/releases/tag/v1.97.1 https://github.com/aws/amazon-ecs-agent/security/advisories/GHSA-wm7x-ww72-r77q https://aws.amazon.com/security/security-bulletins/AWS-2025-018/ https://nvd.nist.gov/vuln/detail/CVE-2025-9039
Patch
https://github.com/aws/amazon-ecs-agent/releases
Share on: