Back to overview

CVE-2026-14904

MEDIUM
6.5
CVSS 3.1
Description
AWS Research and Engineering Studio (RES) is an open-source solution that enables researchers and engineers to create and manage secure virtual desktops and computing resources on AWS. Improper link resolution before file access issue (CWE-59) in the Auth.GetUserPrivateKey API. An authenticated remote user could read arbitrary files on the cluster-manager EC2 instance by replacing their SSH private key file (~/.ssh/id_rsa) with a symbolic link targeting any file on the host. Because the cluster-manager process runs as root, any file readable by root is exposed, including other users' SSH private keys and application configuration secrets. It's recommended to upgrade to RES version 2026.06.

Metadata

CVE ID
CVE-2026-14904
State
PUBLISHED
Assigner
AMZN
Reserved
2026-07-06 21:21 UTC
Published
2026-07-07 16:37 UTC
Last updated
2026-07-07 17:24 UTC
Primary CWE
CWE-59
CWE-59 Improper link resolution before file access ('link fo…
Vendor / Product
AWS / res
Sources
cve.org  ·  NVD

Severity & Metrics

6.5 MEDIUM CVSS 3.1
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
SSVC — CISA Coordinator
Exploitation
none
Automatable
no
Tech. Impact
partial
Affected products (1)
VendorProductPlatformVersions
AWS res 0 ≤ 2026.03
Weakness (CWE)
CWESourceDescription
CWE-59 cna CWE-59 Improper link resolution before file access ('link following')
CVSS scores (2)
ScoreSeverityVersionSourceVector
7.1 HIGH 4.0 cna CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N
6.5 MEDIUM 3.1 cna CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Back to overview