Description
Incorrect default permissions in Kiro IDE on macOS and Linux before version 0.11.133 could expose the authentication token cache file to other local users or processes via world-readable permissions (0644) instead of owner-restricted permissions (0600).



To remediate this issue, users should upgrade to Kiro IDE version 0.11.133 or later. After upgrading and restarting the application, the cache file permissions are automatically updated on the next token refresh. Users operating in a multi-user environment can invalidate existing tokens by reauthenticating.
Published: 2026-06-15
Score: 6.8 Medium
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

The vulnerability involves the use of world‑readable file permissions (0644) for the authentication token cache file in Kiro IDE on macOS and Linux. This allows any local user to read the file, which contains tokens intended to be protected for the token holder only. The resulting breach of confidentiality could enable an attacker to impersonate the IDE user and potentially access internal resources. The weakness is a permissions error (CWE‑276).

Affected Systems

AWS Kiro IDE on macOS and Linux, versions prior to 0.11.133.

Risk and Exploitability

The CVSS score of 6.8 signifies a moderate impact. The EPSS score of less than 1% indicates a low likelihood of widespread exploitation. The vulnerability is not listed in CISA’s KEV catalog. Exploitation requires local file‑system access, common in shared or multi‑user environments. An attacker with such access can read the token cache and use the credentials for unauthorized actions.

Generated by OpenCVE AI on June 18, 2026 at 01:17 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade Kiro IDE to version 0.11.133 or later.
  • Restart the application or wait until the next token refresh so that the cache file permissions are automatically corrected to 0600.
  • In multi‑user environments, reauthenticate the user to invalidate existing token cache files and ensure the updated permissions are applied.

Generated by OpenCVE AI on June 18, 2026 at 01:17 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Mon, 15 Jun 2026 20:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}


Mon, 15 Jun 2026 19:30:00 +0000

Type Values Removed Values Added
Description Incorrect default permissions in Kiro IDE on macOS and Linux before version 0.11.133 could expose the authentication token cache file to other local users or processes via world-readable permissions (0644) instead of owner-restricted permissions (0600). To remediate this issue, users should upgrade to Kiro IDE version 0.11.133 or later. After upgrading and restarting the application, the cache file permissions are automatically updated on the next token refresh. Users operating in a multi-user environment can invalidate existing tokens by reauthenticating.
Title Insecure Permissions on Authentication Token Cache File in Kiro IDE
First Time appeared Aws
Aws kiro Ide
Weaknesses CWE-276
CPEs cpe:2.3:a:aws:kiro_ide:*:*:linux:*:*:*:*:*
cpe:2.3:a:aws:kiro_ide:*:*:macos:*:*:*:*:*
Vendors & Products Aws
Aws kiro Ide
References
Metrics cvssV3_1

{'score': 5.5, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N'}

cvssV4_0

{'score': 6.8, 'vector': 'CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N'}


cve-icon MITRE

Status: PUBLISHED

Assigner: AMZN

Published:

Updated: 2026-06-15T20:08:12.566Z

Reserved: 2026-06-10T18:47:16.836Z

Link: CVE-2026-11931

cve-icon Vulnrichment

Updated: 2026-06-15T20:08:07.870Z

cve-icon NVD

Status : Awaiting Analysis

Published: 2026-06-15T20:16:25.290

Modified: 2026-06-16T15:42:57.150

Link: CVE-2026-11931

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-06-18T01:30:15Z

Weaknesses
  • CWE-276

    Incorrect Default Permissions