Miggo Logo

CVE-2020-8911: CBC padding oracle issue in AWS S3 Crypto SDK for golang

5.6

CVSS Score
3.1

Basic Information

EPSS Score
0.42867%
Published
2/11/2022
Updated
5/20/2024
KEV Status
No
Technology
TechnologyGo

Technical Details

CVSS Vector
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N
Package NameEcosystemVulnerable VersionsFirst Patched Version
github.com/aws/aws-sdk-gogo< 1.34.01.34.0

Vulnerability Intelligence
Miggo AIMiggo AI

Miggo AIRoot Cause Analysis:
In progress

WAF Protection Rules

WAF Rule

### Summ*ry T** *ol*n* *WS S* *rypto S*K is imp**t** *y *n issu* t**t **n r*sult in loss o* *on*i**nti*lity *n* m*ss*** *or**ry. T** *tt**k r*quir*s writ* ****ss to t** *u*k*t in qu*stion, *n* t**t t** *tt**k*r **s ****ss to *n *n*point t**t r*v**ls

Reasoning

No *n*lysis *v*il**l*