CVE-2026-15895 | AWS jsii up to 1.130.x npm package loading Source os command injection
A vulnerability marked as problematic has been reported in AWS jsii up to 1.130.x. Affected by this issue is some unknown functionality of the component npm package loading. This manipulation of the argument Source causes os command injection.
The identification of this vulnerability is CVE-2026-15895. The attack can only be executed locally. There is no exploit available.VulDB Recent EntriesRead More