CVE-2026-11393 | Amazon AWS AgentCore CLI up to 0.14.1/1.0.0-preview.8 collaborationInstruction code injection (GHSA-m4x6-gwgp-4pm7)

A vulnerability categorized as critical has been discovered in Amazon AWS AgentCore CLI up to 0.14.1/1.0.0-preview.8. Impacted is an unknown function of the component collaborationInstruction Handler. Executing a manipulation can lead to code injection.

This vulnerability is handled as CVE-2026-11393. The attack can be executed remotely. There is not any exploit available.

It is advisable to upgrade the affected component.VulDB Recent EntriesRead More