Description
Overly permissive file permissions in AWS CLI before 1.44.78 (v1) and 2.34.29 (v2) on Unix-like systems where the umask has not been configured to restrict file permissions (the default on most systems) may allow other local users on the same host to read credentials written by certain CLI subcommands (aws codeartifact login, aws iam create-virtual-mfa-device, aws deploy register).

To remediate this issue, users should upgrade to AWS CLI 1.44.78 (v1) or 2.34.29 (v2) or later.
Published: 2026-07-01
Score: 6.8 Medium
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

The vulnerability is an overly permissive file permission setting in the AWS Command Line Interface. On Unix‑like systems where the default umask has not been modified, the CLI writes credential files with world‑readable permissions for specific subcommands (aws codeartifact login, aws iam create‑virtual‑mfa‑device, aws deploy register). As a result, any local user on the same host can read these files and obtain AWS credentials that were intended to be private, enabling credential compromise. The underlying weakness is described by CWE-732 and carries a moderate impact.

Affected Systems

The issue affects AWS CLI version 1 releases earlier than 1.44.78 and AWS CLI version 2 releases earlier than 2.34.29. Systems running these unpatched CLI versions on Unix‑like operating systems are vulnerable. Based on the description, it is inferred that the vulnerability applies only to Unix‑like systems and not to Windows binaries.

Risk and Exploitability

The CVSS score of 6.8 places the flaw in the Medium severity range. EPSS data is not available, and the flaw is not listed in CISA's KEV catalog, suggesting no evidence of widespread exploitation. The attack vector is local; any user with access to the host can read the files if the umask allows it. The risk is proportional to the number of local users and the importance of the credentials stored. There are no network prerequisites, making the exploit straightforward in environments with shared accounts or compromised local users.

Generated by OpenCVE AI on July 2, 2026 at 12:59 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade the AWS CLI to version 1.44.78 or later or version 2.34.29 or later.
  • Set a restrictive umask (e.g., 077) before executing AWS CLI commands that write credentials, ensuring files are not world readable.
  • Restrict local user access or run credential‑writing commands within isolated environments, such as containers or dedicated service accounts, to limit the exposure of credential files.

Generated by OpenCVE AI on July 2, 2026 at 12:59 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Wed, 01 Jul 2026 20:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}


Wed, 01 Jul 2026 19:15:00 +0000

Type Values Removed Values Added
Description Overly permissive file permissions in AWS CLI before 1.44.78 (v1) and 2.34.29 (v2) on Unix-like systems where the umask has not been configured to restrict file permissions (the default on most systems) may allow other local users on the same host to read credentials written by certain CLI subcommands (aws codeartifact login, aws iam create-virtual-mfa-device, aws deploy register). To remediate this issue, users should upgrade to AWS CLI 1.44.78 (v1) or 2.34.29 (v2) or later.
Title Overly permissive File Permissions in AWS CLI
Weaknesses CWE-732
References
Metrics cvssV3_1

{'score': 5.5, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N'}

cvssV4_0

{'score': 6.8, 'vector': 'CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N'}


Subscriptions

No data.

cve-icon MITRE

Status: PUBLISHED

Assigner: AMZN

Published:

Updated: 2026-07-01T19:24:53.753Z

Reserved: 2026-06-29T20:24:05.617Z

Link: CVE-2026-13769

cve-icon Vulnrichment

Updated: 2026-07-01T19:24:50.593Z

cve-icon NVD

No data.

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-07-02T13:00:03Z

Weaknesses
  • CWE-732

    Incorrect Permission Assignment for Critical Resource