CVE-2025-0501: 
Amazon WorkSpaces client vulnerability analysis and mitigation

An issue was identified in the native clients for Amazon WorkSpaces when running PCoIP protocol, disclosed on January 15, 2025. The vulnerability, tracked as CVE-2025-0501, affects multiple client versions across different platforms, including Windows client 5.22.0 or earlier, macOS client 5.22.0 or earlier, Linux client 2024.5 or earlier, and Android client 5.0.0 or earlier (AWS Bulletin).

The vulnerability has been assigned a CVSS v4.0 base score of 7.7 (High) with the vector string CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N. Under CVSS v3.1, it received a base score of 7.5 (High) with the vector string CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H. The vulnerability is classified under CWE-295 (Improper Certificate Validation) (NVD).

If successfully exploited, this vulnerability could allow a malicious actor to perform man-in-the-middle attacks, potentially gaining unauthorized access to remote WorkSpaces sessions. This poses significant risks to the confidentiality, integrity, and availability of remote workspace environments (AWS Bulletin, Security Online).

Amazon has released patched versions to address this vulnerability. Users are advised to upgrade to Amazon WorkSpaces Windows client 5.22.1 or later, macOS client 5.22.1 or later, Linux client 2024.6 or later, and Android client 5.0.1 or later. These updates fully remediate the identified security issue (AWS Bulletin).