PT-2026-54637 · Amazon · Aws Cli

Andrew Asseily

·

Published

2026-07-01

·

Updated

2026-07-02

·

CVE-2026-13769

CVSS v3.1

5.5

Medium

VectorAV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Name of the Vulnerable Software and Affected Versions AWS CLI versions prior to 1.44.78 (v1) AWS CLI versions prior to 2.34.29 (v2)
Description On Unix-like systems where the umask is not configured to restrict file permissions, overly permissive file permissions may allow local users on the same host to read credentials. This occurs when certain CLI subcommands are used, specifically 'aws codeartifact login', 'aws iam create-virtual-mfa-device', and 'aws deploy register'.
Recommendations Upgrade to AWS CLI version 1.44.78 (v1) or later. Upgrade to AWS CLI version 2.34.29 (v2) or later.

Fix

Incorrect Permission

Found an issue in the description? Have something to add? Feel free to write us 👾

Weakness Enumeration

Related Identifiers

CVE-2026-13769

Affected Products

Aws Cli