Arbitrary Code Execution Vulnerability in AWS AgentCore CLI
CVE-2026-11393

8.8HIGH

Key Information:

Vendor

Aws

Vendor
CVE Published:
8 June 2026

What is CVE-2026-11393?

The vulnerability arises from improper handling of triple-quote characters during Python code generation in AWS AgentCore CLI versions prior to v0.14.2. This flaw could enable an authenticated remote attacker to execute arbitrary code within the AWS AgentCore Runtime, leveraging the IAM execution role of the imported agent. Additionally, this could affect the local environment of other users in the same AWS account if a crafted collaborationInstruction is processed during agent import. To mitigate this risk, it is critical for users to upgrade to version 0.14.2.

Affected Version(s)

AgentCore CLI 0.4.0 <= 0.14.1

AgentCore CLI 0.3.0-preview.7.0 <= 1.0.0-preview.8

References

CVSS V4

Score:
8.8
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Attack Required:
Physical
Privileges Required:
Undefined
User Interaction:
Unknown

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.