Kryptovaluta-ticker:

sysadmin fra The Register

Amazon Q flaw let booby-trapped Git repos execute code, swipe cloud creds

Friday at 15:34

4 Visninger

0 Kommentarer

Amazon Q flaw let booby-trapped Git repos execute code, swipe cloud creds

A high-severity flaw in Amazon's AI coding assistant for Visual Studio Code meant that opening the wrong Git repository could allow an attacker to execute code on a developer's machine and potentially hand them the keys to the dev's cloud environment. The bug, tracked as CVE-2026-12957 and assigned a CVSS 4.0 score of 8.5, centers on how Amazon Q...

Læs hele artiklen hos kilden.

Læs original artikel

Var dette nyttigt?

Del:

Kommentarer (0)

Vennligst logg inn for å skrive en kommentar

Ingen kommentarer ennå. Bli den første til å kommentere!

Relaterede nyheder

An Amazon Seller Says They Were Offered a Way to Bribe an Amazon Employee

IBM is Getting Ready to Scale Quantum Computing

Renewable Energy Just Hit 30% of America's Electricity Generation

Nourish: A New Wayland Compositor Powered By Vulkan With Infinite Scrolling/Panning

One HDMI setting let my TV remote run everything — I retired three remotes

Gennemse efter kategori

blog crypto news privacy startup sysadmin technology

Lenke kopiert til utklippstavlen