Kryptovalutaticker:
sysadmin från The Register

Amazon Q flaw let booby-trapped Git repos execute code, swipe cloud creds

Friday at 15:34
3 Visningar
0 Kommentarer
Amazon Q flaw let booby-trapped Git repos execute code, swipe cloud creds

A high-severity flaw in Amazon's AI coding assistant for Visual Studio Code meant that opening the wrong Git repository could allow an attacker to execute code on a developer's machine and potentially hand them the keys to the dev's cloud environment. The bug, tracked as CVE-2026-12957 and assigned a CVSS 4.0 score of 8.5, centers on how Amazon Q...

Läs hela artikeln hos källan.

Läs originalartikeln
Var detta hjälpsamt?
Dela:

Kommentarer (0)

Vänligen logga in för att publicera en kommentar

Inga kommentarer ännu. Bli först med att kommentera!

Relaterade nyheter

Nourish: A New Wayland Compositor Powered By Vulkan With Infinite Scrolling/Panning
9 hours ago
Teenage Engineering adds lo-fi mode, USB audio, and more to its KO II sampler
Teenage Engineering adds lo-fi mode, USB audio, and more to its KO II sampler
12 hours ago
I don't even use a Mac, but this is still my favorite way to install software
I don't even use a Mac, but this is still my favorite way to install software
15 hours ago
This Week In Techdirt History: June 21st – 27th
15 hours ago
Margaret Atwood says the problem with AI is ‘garbage in, garbage out’
Margaret Atwood says the problem with AI is ‘garbage in, garbage out’
15 hours ago

Bläddra efter kategori

blog crypto news privacy startup sysadmin technology