CVE-2026-11931

MEDIUM 5.5

Insecure Permissions on Authentication Token Cache File in Kiro IDE

CVSS Score

5.5

EPSS Score

0.0%

EPSS Percentile

0th

Incorrect default permissions in Kiro IDE on macOS and Linux before version 0.11.133 could expose the authentication token cache file to other local users or processes via world-readable permissions (0644) instead of owner-restricted permissions (0600). To remediate this issue, users should upgrade to Kiro IDE version 0.11.133 or later. After upgrading and restarting the application, the cache file permissions are automatically updated on the next token refresh. Users operating in a multi-user environment can invalidate existing tokens by reauthenticating.

CWE	CWE-276
Vendor	aws
Product	kiro ide
Published	Jun 15, 2026
Last Updated	Jun 15, 2026

Stay Ahead of the Next One

Get instant alerts for aws kiro ide

Be the first to know when new medium vulnerabilities affecting aws kiro ide are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

CVSS v3 Breakdown

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Attack Vector

Local

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

None

Availability

None

Affected Versions

AWS / Kiro IDE

0 < 0.11.133

References

NVD ↗ CVE.org ↗ EPSS Data ↗

kiro.dev: https://kiro.dev/changelog/ide/0-11/#patch-0-11-133 aws.amazon.com: https://aws.amazon.com/security/security-bulletins/2026-045-aws/

Credits

BeyondTrust Phantom Labs