{"data":{"id":"9bbcfe11-a92f-42ea-bb29-c11b2b0eef34","title":"CVE-2026-9255 - Tool Execution Without Authorization via Piped Stdin in Kiro CLI","summary":"Kiro CLI, a command-line tool that lets developers use AI to run code and shell commands, has a security flaw (CVE-2026-9255) where it doesn't properly check where input comes from before authorizing tool execution. An attacker on the same computer could trick the tool into running arbitrary commands without the user's permission by sending specially crafted data through stdin (the standard input stream that feeds data into a program).","solution":"Update kiro-cli to version 1.28.0 or later. The affected versions are kiro-cli prior to 1.28.0.","labels":["security"],"sourceUrl":"https://aws.amazon.com/security/security-bulletins/rss/2026-035-aws/","publishedAt":"2026-05-22T16:42:15.000Z","cveId":null,"cweIds":null,"cvssScore":null,"cvssSeverity":null,"severity":"high","attackType":["prompt_injection"],"issueType":"vulnerability","affectedPackages":null,"affectedVendors":[],"affectedVendorsRaw":["Kiro CLI"],"classifierModel":"claude-haiku-4-5-20251001","classifierPromptVersion":"v3","cvssVector":null,"attackVector":null,"attackComplexity":null,"privilegesRequired":null,"userInteraction":null,"exploitMaturity":null,"epssScore":null,"patchAvailable":null,"disclosureDate":"2026-05-22T16:42:15.000Z","capecIds":null,"crossRefCount":0,"attackSophistication":"trivial","impactType":["integrity","availability"],"aiComponentTargeted":"agent","llmSpecific":false,"classifierConfidence":0.85,"researchCategory":null,"atlasIds":null}}