Summary
Security advisories were issued for FreeRTOS and coreSNTP releases containing unintended scripts that could potentially transmit AWS credentials if executed on Linux/macOS. Affected releases have been removed and users are advised to rotate credentials and delete downloaded copies.
Affected Services
FreeRTOS, coreSNTP
Remediation
Delete affected release files. Rotate AWS credentials in ~/.aws/credentials. Contact AWS Support if needed.
Tracked CVEs
No tracked CVEs
References
https://github.com/FreeRTOS/FreeRTOS/security/advisories/GHSA-5677-2m7x-vjp8https://github.com/FreeRTOS/coreSNTP/security/advisories/GHSA-rwv9-2426-cpvvhttps://github.com/FreeRTOS/FreeRTOS/pull/1348.
Contributed by https://github.com/korniko98
Entry Status
Stub (AI-Generated)
Disclosure Date
-
Exploitablity Period
Until 2025/05/08
Known ITW Exploitation
-
Detection Methods
Check SHA256 hashes of downloaded FreeRTOS/coreSNTP release files against those listed in the advisories.
Piercing Index Rating
-
Discovered by
sweeneyirrigreen
