VYPR

Athena Odbc

by Amazon

CVEs (6)

  • CVE-2026-5485HigApr 3, 2026
    risk 0.51cvss 7.8epss 0.01

    OS command injection in the browser-based authentication component in Amazon Athena ODBC driver before 2.0.5.1 on Linux might allow a threat actor to execute arbitrary code by using specially crafted connection parameters that are loaded by the driver during a local…

  • CVE-2026-35558HigApr 3, 2026
    risk 0.51cvss 7.8epss 0.00

    Improper neutralization of special elements in the authentication components in Amazon Athena ODBC driver before 2.1.0.0 might allow a threat actor to execute arbitrary code or redirect authentication flows by using specially crafted connection parameters that are processed by…

  • CVE-2026-35562HigApr 3, 2026
    risk 0.49cvss 7.5epss 0.00

    Allocation of resources without limits in the parsing components in Amazon Athena ODBC driver before 2.1.0.0 might allow a threat actor to cause a denial of service by delivering crafted input that triggers excessive resource consumption during the driver's parsing operations. …

  • CVE-2026-35561HigApr 3, 2026
    risk 0.48cvss 7.4epss 0.00

    Insufficient authentication security controls in the browser-based authentication components in Amazon Athena ODBC driver before 2.1.0.0 might allow a threat actor to intercept or hijack authentication sessions due to insufficient protections in the browser-based authentication…

  • CVE-2026-35560HigApr 3, 2026
    risk 0.48cvss 7.4epss 0.00

    Improper certificate validation in the identity provider connection components in Amazon Athena ODBC driver before 2.1.0.0 might allow a man-in-the-middle threat actor to intercept authentication credentials due to insufficient default transport security when connecting to…

  • CVE-2026-35559MedApr 3, 2026
    risk 0.42cvss 6.5epss 0.00

    Out-of-bounds write in the query processing components in Amazon Athena ODBC driver before 2.1.0.0 might allow a threat actor to crash the driver by using specially crafted data that is processed by the driver during query operations. To remediate this issue, users should…