CVE-2026-11393 - Code Injection via Improper Triple-Quote Escaping in AgentCore CLI Bedrock Agent Import
highvulnerability
security
Source: AWS Security BulletinsJune 8, 2026
Summary
```json { "summary": "A vulnerability (CVE-2026-11393) exists in AWS AgentCore CLI, a tool for managing AI agents on Amazon Bedrock. An attacker with certain permissions could inject malicious Python code by exploiting improper escaping of triple-quote characters (""") in a specific field, allowing the attacker's code to run if the generated file is executed. The vulnerability affects versions 0.4.0 through 0.14.1 and certain preview versions.", "solution": "N/A -- no mitigation discussed in
Classification
Attack SophisticationModerate
Impact (CIA+S)
integrityconfidentiality
AI Component TargetedAgent
Affected Vendors
Amazon
Related Issues
Monthly digest — independent AI security research
Original source: https://aws.amazon.com/security/security-bulletins/rss/2026-040-aws/
First tracked: June 8, 2026 at 08:00 PM
Classified by LLM (prompt v3) · confidence: 92%