AWS inspector medium security documentation change
Summary
Added two entries documenting updates to address false positive detections of CVEs (CVE-2025-22871, CVE-2020-8911, CVE-2020-8912, CVE-2024-45337) in the Amazon Inspector SSM plugin.
Security assessment
Explicitly references security vulnerability identifiers (CVEs) and describes updates deployed to resolve detection inaccuracies. While the plugin wasn't vulnerable, addressing false positives related to CVEs demonstrates security-related documentation updates to clarify detection behavior and prevent misinterpretation.
Diff
diff --git a/inspector/latest/user/doc-history.md b/inspector/latest/user/doc-history.md index 1c79454b6..9cf9af7cb 100644 --- a//inspector/latest/user/doc-history.md +++ b//inspector/latest/user/doc-history.md @@ -11,0 +12,2 @@ Updated policy| Amazon Inspector adds a new permission to the service-linked ro +Update for plugin| Amazon Inspector is made aware of a scenario where the Amazon Inspector SSM plugin might generate a vulnerability finding for `CVE-2025-22871`. It was confirmed the Amazon Inspector SSM plugin is not impacted by these CVEs, and an update was deployed to resolve this detection. | April 21, 2025 +Update for plugin| Amazon Inspector is made aware of a scenario where the Amazon Inspector SSM plugin might generate a vulnerability finding for `CVE-2020-8911`,`CVE-2020-8912`, and `CVE-2024-45337`. It was confirmed that Amazon Inspector is not impacted by these CVEs and an update was deployed to resolve this detection. | April 18, 2025