Language:
https://alas.aws.amazon.com/AL2023/ALAS-2025-956.html
https://alas.aws.amazon.com/cve/html/CVE-2025-1176.html
Severity: Low
ID: 234951
File Name: al2023_ALAS2023-2025-956.nasl
Version: 1.1
Type: local
Agent: unix
Published: 4/29/2025
Updated: 4/29/2025
Supported Sensors: Agentless Assessment, Continuous Assessment, Frictionless Assessment Agent, Frictionless Assessment AWS, Nessus Agent, Nessus
Risk Factor: Medium
Score: 4.2
Risk Factor: Medium
Base Score: 5.1
Temporal Score: 4
Vector: CVSS2#AV:N/AC:H/Au:N/C:P/I:P/A:P
CVSS Score Source: CVE-2025-1182
Risk Factor: Medium
Base Score: 5
Temporal Score: 4.5
Vector: CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L
Temporal Vector: CVSS:3.0/E:P/RL:O/RC:C
CVSS Score Source: CVE-2025-1176
Risk Factor: Low
Base Score: 2.3
Threat Score: 1.3
Threat Vector: CVSS:4.0/E:P
Vector: CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:P/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N
CPE: p-cpe:/a:amazon:linux:binutils-debuginfo, p-cpe:/a:amazon:linux:binutils-gprofng-debuginfo, p-cpe:/a:amazon:linux:binutils-debugsource, cpe:/o:amazon:linux:2023, p-cpe:/a:amazon:linux:binutils-gprofng, p-cpe:/a:amazon:linux:binutils, p-cpe:/a:amazon:linux:binutils-devel
Required KB Items: Host/local_checks_enabled, Host/AmazonLinux/release, Host/AmazonLinux/rpm-list
Exploit Available: true
Exploit Ease: No known exploits are available
Patch Publication Date: 4/23/2025
Vulnerability Publication Date: 2/11/2025
CVE: CVE-2025-1176, CVE-2025-1182
IAVA: 2025-A-0095