AI Sec Watch: A Security Intelligence Platform for AI Systems

Luu, T.J.

Amazon Q Developer: Secrets Leaked via DNS and Prompt Injection

highnewsLLM-Specific

security

Source: Embrace The RedAugust 18, 2025

Summary

Amazon Q Developer, a popular VS Code coding agent with over 1 million downloads, has a high-severity vulnerability where it can leak sensitive information like API keys to external servers through DNS requests (the system that translates website names into IP addresses). Attackers can exploit this behavior using prompt injection (tricking the AI by hiding malicious instructions in its input), especially through untrusted data, because the security relies heavily on how the AI model behaves.

Classification

Attack Type

Prompt InjectionData Extraction

Attack SophisticationModerate

Impact (CIA+S)

confidentiality

Affected Vendors

Amazon

Related Issues

critical

CVE-2025-45150: Insecure permissions in LangChain-ChatGLM-Webui commit ef829 allows attackers to arbitrarily view and download sensitive

Similar attackNVD/CVE Database

high

CVE-2025-54868: LibreChat is a ChatGPT clone with additional features. In versions 0.0.6 through 0.7.7-rc1, an exposed testing endpoint

First tracked: February 12, 2026 at 02:20 PM

Classified by LLM (prompt v3) · confidence: 85%