CVE-2026-11393

Source
https://cve.org/CVERecord?id=CVE-2026-11393
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-11393.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2026-11393
Aliases
  • GHSA-m4x6-gwgp-4pm7
Published
2026-06-08T18:38:03.960Z
Modified
2026-07-08T08:12:44.406003302Z
Severity
  • 8.8 (High) CVSS_V4 - CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:A/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H CVSS Calculator
Summary
Code injection via improper triple-quote escaping in AgentCore CLI Bedrock Agent import
Details

Improper neutralization of triple-quote characters during Python code generation in AgentCore CLI before v0.14.2 might allow an authenticated remote threat actor to execute arbitrary code on AWS AgentCore Runtime under the imported agent's IAM execution role and on the local environment of another user in the same AWS account, via a crafted collaborationInstruction stored on a Bedrock Agent collaborator and later processed by that other user during agent import.

To remediate this issue, users should upgrade to version 0.14.2.

Database specific
{
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/11xxx/CVE-2026-11393.json",
    "cwe_ids": [
        "CWE-94"
    ],
    "cna_assigner": "AMZN"
}
References

Affected packages

Git / github.com/aws/agentcore-cli

Affected ranges

Type
GIT
Repo
https://github.com/aws/agentcore-cli
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Fixed
Database specific
{
    "source": [
        "DESCRIPTION",
        "REFERENCES"
    ],
    "extracted_events": [
        {
            "introduced": "0"
        },
        {
            "fixed": "v0.14.2"
        }
    ]
}

Affected versions

v0.*
v0.10.0
v0.11.0
v0.12.0
v0.12.1
v0.12.2
v0.13.0
v0.13.1
v0.14.0
v0.14.1
v0.3.0-preview.1.0
v0.3.0-preview.1.4
v0.3.0-preview.2.0
v0.3.0-preview.2.1
v0.3.0-preview.3.0
v0.3.0-preview.3.1
v0.3.0-preview.4.0
v0.3.0-preview.5.0
v0.3.0-preview.5.1
v0.3.0-preview.6.0
v0.3.0-preview.6.1
v0.3.0-preview.7.0
v0.3.0-preview.8.0
v0.3.0-preview.9.0
v0.4.0
v0.5.0
v0.5.1
v0.6.0
v0.7.1
v0.8.0
v0.8.1
v0.8.2
v0.9.0
v0.9.1

Database specific

source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-11393.json"