low

Amazon WorkSpaces Windows client credential logging

Published Fri, Oct 6th, 2023

Platforms

Summary

AWS identified an issue in the Amazon WorkSpaces Windows client which resulted in unintentionally logging connection debugging information to a user's local system. This data could include usernames or passwords if they contain specific characters: \ (backslash) or " (double quotes). If an attacker gained access to an Amazon WorkSpaces user's machine, they could then compromise such credentials from the log.

Affected Services

Amazon WorkSpaces

Remediation

Update the client to version 5.11.0 or higher. New versions of the client will automatically delete local logs generated by vulnerable versions.

Tracked CVEs

No tracked CVEs

References

https://aws.amazon.com/security/security-bulletins/AWS-2023-010/

Contributed by https://github.com/korniko98

Disclosure Date

Exploitablity Period

Known ITW Exploitation

Detection Methods

Piercing Index Rating

Discovered by

More vulnerabilities...

high

Power Platform Custom Code information disclosure

A vulnerability in Power Platform could lead to unauthorized access to Custom Code functions used for custom connectors, thereby allowing cross-tenant information disclosure of secrets or other sen...

Evan Grant, Tenable

Fri, Aug 4th, 2023

low

Bad.Build

An information disclosure vulnerability in the Google Cloud Build service could have allowed an attacker to view sensitive logs if they had gained prior access to a GCP environment and had permissi...

Roi Nisimi, Orca Security

Tue, Jul 18th, 2023

medium

Azure Front Door client-side desync

A client-side desync vulnerability was discovered in Front Door, one of Azure's CDN solutions, caused by mishandling of the 'Content-Length' header in HTTP requests. Exploiting this vulnerability w...

Jeti

Tue, Jun 27th, 2023

View all