What is AWS-2025-013?

AWS-2025-013 is a security advisory published by AWS Security Bulletins with Low severity. CVE-2025-6031 - Insecure device pairing in end-of-life Amazon Cloud Cam

Which CVE IDs does AWS-2025-013 cover?

AWS-2025-013 covers the following CVE IDs: CVE-2025-6031. Each CVE has its own detail page on EchelonGraph Pulse with the synthesized EG score.

AWS-2025-013Low

CVE-2025-6031 - Insecure device pairing in end-of-life Amazon Cloud Cam

Vendor

AWS Security Bulletins

Published

July 17, 2025

Last Modified

—

🔗 CVE IDs covered (1)

CVE-2025-6031 →

📋 Description

Scope: Amazon Content Type: Informational Publication Date: 2025/06/12 10:30 AM PDT Description Amazon Cloud Cam is a home security camera that was deprecated on December 2, 2022, is end of life, and is no longer actively supported. When a user powers on the Amazon Cloud Cam, the device attempts to connect to a remote service infrastructure that has been deprecated due to end-of-life status. The device defaults to a pairing status in which an arbitrary user can bypass SSL pinning to associate the device to an arbitrary network, allowing for network traffic interception and modification. Affected version: All

🔗 References (1)

advisoryhttps://aws.amazon.com/security/security-bulletins/rss/aws-2025-013/