CVE-2026-5059
Received Received - Intake
Command Injection in aws-mcp-server Allows Remote Code Execution

Publication date: 2026-04-11

Last updated on: 2026-04-11

Assigner: Zero Day Initiative

Description
aws-mcp-server AWS CLI Command Injection Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of aws-mcp-server. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of the allowed commands list. The issue results from the lack of proper validation of a user-supplied string before using it to execute a system call. An attacker can leverage this vulnerability to execute code in the context of the MCP server. Was ZDI-CAN-27969.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2026-04-11
Last Modified
2026-04-11
Generated
2026-06-16
AI Q&A
2026-04-11
EPSS Evaluated
2026-06-15
NVD
CVE-2026-5059
EUVD
EUVD-2026-21656
Affected Vendors & Products
Showing 1 associated CPE
Vendor Product Version / Range
aws aws_mcp_server to 2026-5059 (inc)
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-78 The product constructs all or part of an OS command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended OS command when it is sent to a downstream component.
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Mitigation Strategies

To mitigate this critical remote code execution vulnerability in aws-mcp-server, immediate steps include restricting network access to the MCP server to trusted sources only and monitoring for any unusual or unauthorized command executions.

Additionally, applying any available patches or updates from the vendor that address this vulnerability is essential to prevent exploitation.

Since the vulnerability allows unauthenticated remote code execution via improper validation of user-supplied commands, disabling or limiting the allowed commands list functionality until a fix is applied can reduce risk.

Executive Summary

CVE-2026-5059 is a critical remote code execution vulnerability in the aws-mcp-server product. It occurs due to improper validation of user-supplied strings in the handling of the allowed commands list. This flaw allows remote attackers to execute arbitrary system commands on affected installations without needing to authenticate.

Impact Analysis

Exploiting this vulnerability enables attackers to run arbitrary code with the privileges of the MCP server. This can lead to a full compromise of the affected system, impacting its confidentiality, integrity, and availability.

Compliance Impact

This vulnerability allows remote attackers to execute arbitrary code on the affected aws-mcp-server without authentication, potentially compromising the confidentiality, integrity, and availability of the system.

Such a compromise could lead to unauthorized access to sensitive data, which may impact compliance with common standards and regulations like GDPR and HIPAA that require protection of personal and health information.

Organizations using the affected software should consider this vulnerability a serious risk to their regulatory compliance posture due to the potential for data breaches and system compromise.

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2026-5059. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart