{"data":{"id":"ab39eb54-3dc6-4506-b492-ca9f20a6e4f6","title":"CVE-2026-15746 - Credential disclosure in Strands Agents Tools elasticsearch_memory tool","summary":"Strands Agents, a Python SDK for building AI agents, contained a vulnerability (CVE-2026-15746) in its elasticsearch_memory tool where connection settings could be controlled by the LLM (the AI model itself). If an API key wasn't provided, the tool would use the operator's Elasticsearch API key from their environment and send it to any server the LLM directed it to, allowing attackers to steal credentials through a crafted prompt.","solution":"N/A -- no mitigation discussed in source.","labels":["security"],"sourceUrl":"https://aws.amazon.com/security/security-bulletins/rss/2026-056-aws/","publishedAt":"2026-07-15T18:49:07.000Z","cveId":null,"cweIds":null,"cvssScore":null,"cvssSeverity":null,"severity":"high","attackType":["prompt_injection"],"issueType":"vulnerability","affectedPackages":null,"affectedVendors":[],"affectedVendorsRaw":["Strands Agents"],"classifierModel":"claude-haiku-4-5-20251001","classifierPromptVersion":"v3","cvssVector":null,"attackVector":null,"attackComplexity":null,"privilegesRequired":null,"userInteraction":null,"exploitMaturity":null,"epssScore":null,"patchAvailable":null,"disclosureDate":"2026-07-15T18:49:07.000Z","capecIds":null,"crossRefCount":0,"attackSophistication":"moderate","impactType":["confidentiality"],"aiComponentTargeted":"agent","llmSpecific":true,"classifierConfidence":0.92,"researchCategory":null,"atlasIds":null}}