CVE-2026-47074 – ex_aws_sns SigningCertURL not validated in verify_message/1

CVE ID :CVE-2026-47074

Published : May 28, 2026, 10:16 a.m. | 15 minutes ago

Description :Improper Certificate Validation vulnerability in ex-aws ex_aws_sns (ExAws.SNS, ExAws.SNS.PublicKeyCache modules) allows Signature Spoofing by Improper Validation.

This vulnerability is associated with program files lib/ex_aws/sns.ex, lib/ex_aws/sns/public_key_cache.ex and program routines ‘Elixir.ExAws.SNS’:verify_message/1, ‘Elixir.ExAws.SNS.PublicKeyCache’:get/1.

‘Elixir.ExAws.SNS’:verify_message/1 fetches the signing certificate from the SigningCertURL field of the incoming SNS message without validating that the URL uses HTTPS or that the host matches an AWS-owned SNS certificate domain. An unauthenticated attacker who can POST to an endpoint that calls verify_message/1 can supply an attacker-controlled SigningCertURL, sign a forged SNS message with their own key, and cause the function to return :ok, completely bypassing SNS signature verification.

This issue affects ex_aws_sns: from 2.0.1 before 2.3.5.

Severity: 8.7 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more… 

نوشته های مشابه

CVE-2026-9813 – FlowIntel external reference URL probe allows server-side request forgery

CVE-2026-4377 – Use of Weak Credentials in D-Link DWR-X1820 router

CVE-2026-46241 – spi: mpc52xx: fix use-after-free on registration failure

CVE-2026-46240 – media: iris: Fix use-after-free in iris_release_internal_buffers()