Security Advisory

CVE-2026-35561

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-04-03 20:10:40

Last updated 2026-04-07 13:09:01

Assigner AMZN

State PUBLISHED

Description

Insufficient authentication security controls in the browser-based authentication components in Amazon Athena ODBC driver before 2.1.0.0 might allow a threat actor to intercept or hijack authentication sessions due to insufficient protections in the browser-based authentication flows. To remediate this issue, users should upgrade to version 2.1.0.0.

← Browse all CVEs View on cve.org ↗