VulnerableCode Package Details - pkg:deb/debian/libaws@2.5~124785-1

Search for packages

Package details: pkg:deb/debian/libaws@2.5~124785-1

Essentials
History (3)

purl	pkg:deb/debian/libaws@2.5~124785-1

Next non-vulnerable version	None.
Latest non-vulnerable version	None.
Risk	1.9

Vulnerabilities affecting this package (3)

Vulnerability	Summary	Fixed by
VCID-dmtm-njrm-nkgf Aliases: CVE-2024-55581	When AdaCore Ada Web Server 25.0.0 is linked with GnuTLS, the default behaviour of AWS.Client is vulnerable to a man-in-the-middle attack because of lack of verification of an HTTPS server's certificate (unless the using program specifies a TLS configuration).	There are no reported fixed by versions.
VCID-rsgs-7ta5-m7dn Aliases: CVE-2008-7220	FrameWork: XSS Ajax requests (AST-2009-009)	2.7-4 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}
VCID-sxh7-sk5y-vqde Aliases: CVE-2007-2383	embedded prototype.js JavaScript hijacking	2.7-4 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}

Vulnerabilities fixed by this package (0)

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2025-08-01T17:26:10.640892+00:00	Debian Oval Importer	Affected by	VCID-sxh7-sk5y-vqde	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	37.0.0
2025-08-01T13:42:18.556167+00:00	Debian Oval Importer	Affected by	VCID-dmtm-njrm-nkgf	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	37.0.0
2025-08-01T13:34:39.748192+00:00	Debian Oval Importer	Affected by	VCID-rsgs-7ta5-m7dn	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	37.0.0