CVE-2026-12530 | Amazon AWS bedrock-agentcore up to 1.6.0 Package install_packages argument injection

A vulnerability marked as critical has been reported in Amazon AWS bedrock-agentcore up to 1.6.0. This impacts the function install_packages of the component Package Handler. Performing a manipulation results in argument injection.

This vulnerability is reported as CVE-2026-12530. The attack is possible to be carried out remotely. No exploit exists.

It is suggested to upgrade the affected component.VulDB Recent EntriesRead More