Known Vulnerabilities for S3 Store by Amazon
Listed below are 1 of the newest known vulnerabilities associated with "S3 Store" by "Amazon".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-61504 json | Rejetto HFS 3.0.0 through 3.2.0 does not escape file names in its fallback "basic" web listing, and this listing can be force... | Not Provided | 2026-07-13 | 2026-07-13 |
| CVE-2026-61461 json | Dify before 1.16.0-rc1 contains a SQL injection vulnerability in the MyScale vector store backend that allows attackers to ex... | Not Provided | 2026-07-10 | 2026-07-10 |
| CVE-2026-60090 json | PraisonAI before 4.6.78 fails to validate the caller-controlled dimension argument in the PGVector and Cassandra knowledge-st... | Not Provided | 2026-07-11 | 2026-07-14 |
| CVE-2026-59818 json | etcd is a distributed key-value store for the data of a distributed system. Prior to 3.5.32 and 3.6.13, when etcd is configur... | Not Provided | 2026-07-08 | 2026-07-09 |
| CVE-2026-59726 json | Ruflo is an agent meta-harness for Claude Code and Codex. Prior to 3.16.3, ruflo's default docker-compose deployment exposed ... | Not Provided | 2026-07-09 | 2026-07-09 |
| CVE-2026-59094 json | Pathway through 0.31.1, fixed in commit d09722e, document store applies a caller-supplied glob pattern to indexed document pa... | Not Provided | 2026-07-02 | 2026-07-06 |
| CVE-2026-58657 json | Grav before 2.0.0 (affected through 2.0.0-rc.9 and the 2.0 branch) contains a stored CSS injection vulnerability in the Markd... | Not Provided | 2026-07-08 | 2026-07-08 |
| CVE-2026-58654 json | The Grav API plugin (getgrav/grav-plugin-api) 1.0.0 contains an unrestricted file upload vulnerability in the avatar upload e... | Not Provided | 2026-07-08 | 2026-07-08 |
| CVE-2026-58173 json | Vibe-Trading before 0.1.10 contains a path traversal vulnerability that allows attackers to write files outside the intended ... | Not Provided | 2026-06-30 | 2026-07-14 |
| CVE-2026-58171 json | Vibe-Trading before 0.1.10 constructs the swarm run directory by joining a caller-supplied run identifier onto the runs base ... | Not Provided | 2026-06-30 | 2026-07-14 |