Amazon AWS Amplify Studio Security Update Advisory (CVE-2025-4318)

May 09 2025

Overview

We have released a security update to address a vulnerability in Amazon AWS Amplify Studio. Affected product users are advised to update to the latest version.

Affected Products

CVE-2025-4318

Amplify Studio versions: 2.20.2 and earlier

Resolved Vulnerabilities

Javascript execution vulnerability due to UI component property input validation issues (CVE-2025-4318)

Vulnerability Patches

Vulnerability Patches have been made available in the latest update. Please follow the instructions on the Referenced Sites to update to the latest Vulnerability Patches version.

CVE-2025-4318

Amplify Studio version: 2.20.3

References

[1] CVE-2025-4318 – Input validation issue in AWS Amplify Studio UI component properties
https://aws.amazon.com/ko/security/security-bulletins/AWS-2025-010/

Amazon AWS Amplify Studio Security Update Advisory (CVE-2025-4318)

MS Family May 2025 1st Security Update Advisory

Cisco Family May 2025 First Round Security Update Advisory

Tags:

MS Family May 2025 1st Security Update Advisory

Cisco Family May 2025 First Round Security Update Advisory