Aws-Mcp-Server vulnerabilities
2 known vulnerabilities affecting aws-mcp-server/aws-mcp-server.
Total CVEs
2
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL2
Vulnerabilities
Page 1 of 1
CVE-2026-5058P2CRITICALCVSS 9.8v1.3.02026-04-11
CVE-2026-5058 [CRITICAL] CWE-78 CVE-2026-5058: aws-mcp-server Command Injection Remote Code Execution Vulnerability. This vulnerability allows remo
aws-mcp-server Command Injection Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of aws-mcp-server. Authentication is not required to exploit this vulnerability.
The specific flaw exists within the handling of the allowed commands list. The issue results from the lac
nvd
CVE-2026-5059P2CRITICALCVSS 9.8v1.3.02026-04-11
CVE-2026-5059 [CRITICAL] CWE-78 CVE-2026-5059: aws-mcp-server AWS CLI Command Injection Remote Code Execution Vulnerability. This vulnerability all
aws-mcp-server AWS CLI Command Injection Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of aws-mcp-server. Authentication is not required to exploit this vulnerability.
The specific flaw exists within the handling of the allowed commands list. The issue results from
nvd