Language:
https://alas.aws.amazon.com//AL2023/ALAS2023-2025-1114.html
https://alas.aws.amazon.com/faqs.html
https://explore.alas.aws.amazon.com/CVE-2025-1220.html
Severity: Medium
ID: 243470
File Name: al2023_ALAS2023-2025-1114.nasl
Version: 1.1
Type: local
Agent: unix
Published: 8/4/2025
Updated: 8/4/2025
Supported Sensors: Frictionless Assessment AWS, Frictionless Assessment Agent, Nessus Agent, Agentless Assessment, Continuous Assessment, Nessus
Risk Factor: Medium
Score: 4.4
Risk Factor: Medium
Base Score: 5
Temporal Score: 3.9
Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N
CVSS Score Source: CVE-2025-1220
Risk Factor: Medium
Base Score: 5.3
Temporal Score: 4.8
Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
Temporal Vector: CVSS:3.0/E:P/RL:O/RC:C
CPE: p-cpe:/a:amazon:linux:php8.3-gd-debuginfo, p-cpe:/a:amazon:linux:php8.3-enchant-debuginfo, p-cpe:/a:amazon:linux:php8.3-dbg-debuginfo, p-cpe:/a:amazon:linux:php8.3-cli-debuginfo, p-cpe:/a:amazon:linux:php8.3-opcache-debuginfo, cpe:/o:amazon:linux:2023, p-cpe:/a:amazon:linux:php8.3, p-cpe:/a:amazon:linux:php8.3-pspell-debuginfo, p-cpe:/a:amazon:linux:php8.3-soap-debuginfo, p-cpe:/a:amazon:linux:php8.3-mysqlnd, p-cpe:/a:amazon:linux:php8.3-gd, p-cpe:/a:amazon:linux:php8.3-embedded, p-cpe:/a:amazon:linux:php8.3-ldap, p-cpe:/a:amazon:linux:php8.3-modphp-debuginfo, p-cpe:/a:amazon:linux:php8.3-enchant, p-cpe:/a:amazon:linux:php8.3-pdo, p-cpe:/a:amazon:linux:php8.3-common, p-cpe:/a:amazon:linux:php8.3-dba, p-cpe:/a:amazon:linux:php8.3-snmp, p-cpe:/a:amazon:linux:php8.3-sodium, p-cpe:/a:amazon:linux:php8.3-zip-debuginfo, p-cpe:/a:amazon:linux:php8.3-dba-debuginfo, p-cpe:/a:amazon:linux:php8.3-tidy, p-cpe:/a:amazon:linux:php8.3-fpm-debuginfo, p-cpe:/a:amazon:linux:php8.3-bcmath-debuginfo, p-cpe:/a:amazon:linux:php8.3-mysqlnd-debuginfo, p-cpe:/a:amazon:linux:php8.3-embedded-debuginfo, p-cpe:/a:amazon:linux:php8.3-odbc-debuginfo, p-cpe:/a:amazon:linux:php8.3-mbstring, p-cpe:/a:amazon:linux:php8.3-gmp-debuginfo, p-cpe:/a:amazon:linux:php8.3-soap, p-cpe:/a:amazon:linux:php8.3-fpm, p-cpe:/a:amazon:linux:php8.3-gmp, p-cpe:/a:amazon:linux:php8.3-ldap-debuginfo, p-cpe:/a:amazon:linux:php8.3-intl, p-cpe:/a:amazon:linux:php8.3-modphp, p-cpe:/a:amazon:linux:php8.3-xml, p-cpe:/a:amazon:linux:php8.3-pdo-debuginfo, p-cpe:/a:amazon:linux:php8.3-xml-debuginfo, p-cpe:/a:amazon:linux:php8.3-bcmath, p-cpe:/a:amazon:linux:php8.3-cli, p-cpe:/a:amazon:linux:php8.3-intl-debuginfo, p-cpe:/a:amazon:linux:php8.3-pgsql-debuginfo, p-cpe:/a:amazon:linux:php8.3-debugsource, p-cpe:/a:amazon:linux:php8.3-ffi, p-cpe:/a:amazon:linux:php8.3-pgsql, p-cpe:/a:amazon:linux:php8.3-pspell, p-cpe:/a:amazon:linux:php8.3-odbc, p-cpe:/a:amazon:linux:php8.3-common-debuginfo, p-cpe:/a:amazon:linux:php8.3-devel, p-cpe:/a:amazon:linux:php8.3-process-debuginfo, p-cpe:/a:amazon:linux:php8.3-snmp-debuginfo, p-cpe:/a:amazon:linux:php8.3-dbg, p-cpe:/a:amazon:linux:php8.3-opcache, p-cpe:/a:amazon:linux:php8.3-process, p-cpe:/a:amazon:linux:php8.3-sodium-debuginfo, p-cpe:/a:amazon:linux:php8.3-tidy-debuginfo, p-cpe:/a:amazon:linux:php8.3-zip, p-cpe:/a:amazon:linux:php8.3-ffi-debuginfo, p-cpe:/a:amazon:linux:php8.3-mbstring-debuginfo, p-cpe:/a:amazon:linux:php8.3-debuginfo
Required KB Items: Host/local_checks_enabled, Host/AmazonLinux/release, Host/AmazonLinux/rpm-list
Exploit Available: true
Exploit Ease: No known exploits are available
Patch Publication Date: 8/4/2025
Vulnerability Publication Date: 7/3/2025