Security Advisory

CVE-2025-0693

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-01-23 21:22:25

Last updated 2025-10-14 18:42:46

Assigner AMZN

State PUBLISHED

Description

Variable response times in the AWS Sign-in IAM user login flow allowed for the use of brute force enumeration techniques to identify valid IAM usernames in an arbitrary AWS account.

← Browse all CVEs View on cve.org ↗