PT-2025-45164 · Amazon · Amazon Workspaces Client For Linux

Visionlink

Publicado

2025-11-05

Atualizado

2025-12-14

CVE-2025-12779

CVSS v3.1

8.8

Alta

Vetor

AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Amazon WorkSpaces client for Linux versions 2023.0 through 2024.8

Description A flaw in the handling of the authentication token within the Amazon WorkSpaces client for Linux may allow exposure of the authentication token for DCV-based WorkSpaces to other local users on the same client machine. A local user may be able to extract another local user's authentication token and access their WorkSpace under certain circumstances.

Recommendations Upgrade to Amazon WorkSpaces client for Linux version 2025.0 or later.

Correção

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-497

Identificadores relacionados

CVE-2025-12779

Produtos afetados

Amazon Workspaces Client For Linux

PT-2025-45164 · Amazon · Amazon Workspaces Client For Linux

CVE-2025-12779

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 10