MEDIUMAi
Global

Amazon Q Developer Flaw Could Let Malicious Repos Run Code via MCP Configs

·Source: The Hacker News

Updated:

Executive Summary

A high-severity flaw in Amazon Q Developer let a malicious repository run commands and steal a developer's cloud credentials. The path was short: a developer opens the repo, trusts the workspace, and Amazon Q does the rest. Amazon has patched it. Tracked as CVE-2026-12957 (CVSS 8.5), the bug sat in how Amazon's AI coding assistant handled Model Context Protocol (MCP) servers. Wiz

Analysis

A high-severity flaw in Amazon Q Developer let a malicious repository run commands and steal a developer's cloud credentials. The path was short: a developer opens the repo, trusts the workspace, and Amazon Q does the rest. Amazon has patched it. Tracked as CVE-2026-12957 (CVSS 8.5), the bug sat in how Amazon's AI coding assistant handled Model Context Protocol (MCP) servers. Wiz

Indicators of Compromise (1)

CVE (1)
CVE-2026-12957
Source Attribution

Originally published by The Hacker News on Jun 26, 2026.

Related Threats