CVE-2026-4270 | Amazon AWS API MCP Server up to 1.3.8 improper protection of alternate path

March 16, 2026 Yanac

A vulnerability was found in Amazon AWS API MCP Server up to 1.3.8. It has been rated as problematic. Affected is an unknown function. This manipulation causes improper protection of alternate path.

This vulnerability is registered as CVE-2026-4270. The attack needs to be launched locally. No exploit is available.

Upgrading the affected component is advised.VulDB Recent EntriesRead More