Known Vulnerabilities for Workspaces by Amazon
Listed below are 2 of the newest known vulnerabilities associated with "Workspaces" by "Amazon".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-58653 json | PraisonAI before 0.1.7 fails to validate that project_id in issue create and update request bodies belongs to the URL workspa... | Not Provided | 2026-07-02 | 2026-07-02 |
| CVE-2026-56268 json | Flowise before 3.1.2 contains an information disclosure vulnerability in the /api/v1/chatflows/apikey/:apikey endpoint. When ... | Not Provided | 2026-06-22 | 2026-06-23 |
| CVE-2026-55611 json | AnythingLLM is an application that turns pieces of content into context that any LLM can use as references during chatting. F... | Not Provided | 2026-06-24 | 2026-06-24 |
| CVE-2026-55431 json | Coder allows organizations to provision remote development environments via Terraform. Prior to versions 2.29.7, 2.32.7, 2.33... | Not Provided | 2026-07-08 | 2026-07-08 |
| CVE-2026-53819 json | OpenClaw before 2026.5.27 contains an arbitrary code execution vulnerability in skill install flows where workspace .env file... | Not Provided | 2026-06-11 | 2026-06-12 |
| CVE-2026-53813 json | OpenClaw before 2026.4.25 contains a path traversal vulnerability in memory-core artifact loading where workspace state influ... | Not Provided | 2026-06-11 | 2026-06-12 |
| CVE-2026-50137 json | Budibase is an open-source low-code platform. Prior to 3.39.0, an anonymous attacker who knows or can enumerate a workspace i... | Not Provided | 2026-06-26 | 2026-06-29 |
| CVE-2026-49394 json | Frappe is a full-stack web application framework. Prior to 16.19.0, authorization bypass was possible via the update_page end... | Not Provided | 2026-07-10 | 2026-07-13 |
| CVE-2026-47713 json | AnythingLLM is an application that turns pieces of content into context that any LLM can use as references during chatting. P... | Not Provided | 2026-05-28 | 2026-05-29 |
| CVE-2026-47388 json | NocoDB is software for building databases as spreadsheets. Prior to 2026.05.1, a low-privilege MCP token holder with knowledg... | Not Provided | 2026-06-23 | 2026-06-24 |