CVE-2025-11462 | Amazon AWS Client VPN up to 5.2.0 API link following

October 7, 2025 Yanac

A vulnerability, which was classified as critical, has been found in Amazon AWS Client VPN up to 5.2.0. Affected by this issue is some unknown functionality of the component API. This manipulation causes link following.

The identification of this vulnerability is CVE-2025-11462. The attack can only be executed locally. There is no exploit available.

It is advisable to upgrade the affected component.VulDB Recent EntriesRead More