Description
Insufficient access control restrictions in the file write tool in Amazon Kiro IDE before version 0.11 might allow remote unauthenticated actors to execute arbitrary commands via crafted instructions that cause writes to execution-sensitive paths (such as .vscode/tasks.json), enabling auto-execution on folder open.



To remediate this issue, users should upgrade to Kiro IDE version 0.11 or later.
Published: 2026-06-02
Score: 8.6 High
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

Insufficient access control in the file write tool in Amazon Kiro IDE before version 0.11 allows a remote unauthenticated actor to instruct the IDE to write to execution‑sensitive paths such as .vscode/tasks.json. The crafted write causes the IDE to auto‑execute these files when a folder is opened, giving the attacker the ability to run arbitrary commands on the host. This flaw is classified as CWE‑732, Incorrect Permission Assignment, and can lead to complete system compromise if exploited.

Affected Systems

All versions of AWS Kiro IDE released prior to 0.11 contain the flaw. The vulnerability applies to the Amazon Kiro IDE product, which is distributed by AWS.

Risk and Exploitability

The CVSS score of 8.6 indicates a high‑severity vulnerability with potential for heavy impact. Because the EPSS score is not available and the vulnerability is not listed in the CISA KEV catalog, there is currently no publicly known exploitation case, but the lack of EPSS data does not reduce the inherent risk. The likely attack vector is inferred from the description: a remote attacker can send crafted write instructions to the vulnerable file write tool, causing the IDE to modify execution‑sensitive paths and trigger auto‑execution of malicious commands.

Generated by OpenCVE AI on June 2, 2026 at 16:21 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Apply the vendor’s patch or update Amazon Kiro IDE to version 0.11 or later to eliminate the vulnerable file write behavior.
  • Ensure that permissions on execution‑sensitive directories and configuration files (e.g., .vscode/tasks.json) are set to read‑only or restricted to trusted users, following the best practice for CWE‑732 mitigation.
  • Disable or tightly control the IDE’s auto‑execution feature so that opening a folder does not trigger automatic task execution, reducing the opportunity for malicious files to run.

Generated by OpenCVE AI on June 2, 2026 at 16:21 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Fri, 05 Jun 2026 18:00:00 +0000

Type Values Removed Values Added
First Time appeared Amazon
Amazon kiro Ide
CPEs cpe:2.3:a:amazon:kiro_ide:*:*:*:*:*:*:*:*
Vendors & Products Amazon
Amazon kiro Ide

Tue, 02 Jun 2026 16:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}

Tue, 02 Jun 2026 15:45:00 +0000

Type Values Removed Values Added
Description Insufficient access control restrictions in the file write tool in Amazon Kiro IDE before version 0.11 might allow remote unauthenticated actors to execute arbitrary commands via crafted instructions that cause writes to execution-sensitive paths (such as .vscode/tasks.json), enabling auto-execution on folder open. To remediate this issue, users should upgrade to Kiro IDE version 0.11 or later.
Title Kiro IDE Insufficient File Write Restrictions to Execution-Sensitive Paths
First Time appeared Aws
Aws kiro Ide
Weaknesses CWE-732
CPEs cpe:2.3:a:aws:kiro_ide:*:*:*:*:*:*:*:*
Vendors & Products Aws
Aws kiro Ide
References
Metrics cvssV3_1

{'score': 8.8, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H'}

cvssV4_0

{'score': 8.6, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N'}

Subscriptions

Amazon Kiro Ide
Aws Kiro Ide
cve-icon MITRE

Status: PUBLISHED

Assigner: AMZN

Published:

Updated: 2026-06-03T03:56:03.860Z

Reserved: 2026-06-01T20:46:32.966Z

Link: CVE-2026-10591

cve-icon Vulnrichment

Updated: 2026-06-02T16:08:34.472Z

cve-icon NVD

Status : Analyzed

Published: 2026-06-02T16:16:34.647

Modified: 2026-06-05T17:45:09.307

Link: CVE-2026-10591

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-06-02T16:30:13Z

Weaknesses
  • CWE-732

    Incorrect Permission Assignment for Critical Resource