CVE-2026-12957 and CVE-2026-12958 - Issues in Language Servers for AWS and Amazon Q Developer Plugins
Bulletin ID: 2026-047-AWS Scope: AWS Content Type: Important (requires attention) Publication Date: 06/23/2026 09:30 AM PDT Description: Language Servers for AWS provide the underlying language-server runtime that powers Amazon Q Developer's AI coding assistance across its IDE plugins (Visual Studio Code, JetBrains, Eclipse, and Visual Studio). We identified CVE-2026-12957, an improper trust boundary enforcement issue in Language Servers for AWS before version 1.65.0. If a local user opens a maliciously crafted workspace, any commands within the project configuration files may be automatically executed. This issue requires the user to trust the workspace when prompted. We identified CVE-2026-12958, a missing symlink-validation issue in Language Servers for AWS before version 1.69.0. This may occur when a local user opens a workspace with a maliciously crafted symlink that resolves to a file path outside the workspace trust boundary. These issues affect the Amazon Q Developer IDE plugins, which bundle Language Servers for AWS. Both issues are remediated in Language Servers for AWS version 1.69.0. Affected products & versions: - Language Servers for AWS: < 1.69. - Amazon Q Developer for Visual Studio Code: < 2.20 - Amazon Q Developer for JetBains: < 4.3 - Amazon Q Developer for Eclipse: < 2.7.4 - AWS Toolkit with Amazon Q for Visual Studio: < 1.94.0.0 Please refer to the article below for the most up-to-date and complete information related to this AWS Security Bulletin.
AI Analysis
Technical Summary
CVE-2026-12957 is an improper trust boundary enforcement vulnerability in Language Servers for AWS before version 1.65.0, where commands in project configuration files may be automatically executed if a local user opens a maliciously crafted workspace and trusts it. CVE-2026-12958 is a missing symlink validation vulnerability in Language Servers for AWS before version 1.69.0, allowing a local user to open a workspace with a malicious symlink that resolves outside the trusted workspace boundary. Both vulnerabilities affect Amazon Q Developer IDE plugins bundling Language Servers for AWS, including Visual Studio Code, JetBrains, Eclipse, and Visual Studio versions prior to specified fixed releases. Both issues are remediated in Language Servers for AWS version 1.69.0 and corresponding plugin versions.
Potential Impact
These vulnerabilities allow a local user to execute commands automatically or access files outside the trusted workspace boundary when opening maliciously crafted workspaces, contingent on the user trusting the workspace prompt. This could lead to unauthorized code execution or information disclosure within the context of the user's environment. The impact is limited by the requirement for local user interaction and trust acceptance.
Mitigation Recommendations
A fix is available in Language Servers for AWS version 1.69.0 and corresponding Amazon Q Developer plugin versions: Visual Studio Code >= 2.20, JetBrains >= 4.3, Eclipse >= 2.7.4, and Visual Studio Toolkit >= 1.94.0.0. Users and administrators should upgrade to these versions or later to remediate these vulnerabilities. No workarounds are available. Ensure any forked or derivative code incorporates these fixes.
CVE-2026-12957 and CVE-2026-12958 - Issues in Language Servers for AWS and Amazon Q Developer Plugins
Description
Bulletin ID: 2026-047-AWS Scope: AWS Content Type: Important (requires attention) Publication Date: 06/23/2026 09:30 AM PDT Description: Language Servers for AWS provide the underlying language-server runtime that powers Amazon Q Developer's AI coding assistance across its IDE plugins (Visual Studio Code, JetBrains, Eclipse, and Visual Studio). We identified CVE-2026-12957, an improper trust boundary enforcement issue in Language Servers for AWS before version 1.65.0. If a local user opens a maliciously crafted workspace, any commands within the project configuration files may be automatically executed. This issue requires the user to trust the workspace when prompted. We identified CVE-2026-12958, a missing symlink-validation issue in Language Servers for AWS before version 1.69.0. This may occur when a local user opens a workspace with a maliciously crafted symlink that resolves to a file path outside the workspace trust boundary. These issues affect the Amazon Q Developer IDE plugins, which bundle Language Servers for AWS. Both issues are remediated in Language Servers for AWS version 1.69.0. Affected products & versions: - Language Servers for AWS: < 1.69. - Amazon Q Developer for Visual Studio Code: < 2.20 - Amazon Q Developer for JetBains: < 4.3 - Amazon Q Developer for Eclipse: < 2.7.4 - AWS Toolkit with Amazon Q for Visual Studio: < 1.94.0.0 Please refer to the article below for the most up-to-date and complete information related to this AWS Security Bulletin.
Affected software
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
CVE-2026-12957 is an improper trust boundary enforcement vulnerability in Language Servers for AWS before version 1.65.0, where commands in project configuration files may be automatically executed if a local user opens a maliciously crafted workspace and trusts it. CVE-2026-12958 is a missing symlink validation vulnerability in Language Servers for AWS before version 1.69.0, allowing a local user to open a workspace with a malicious symlink that resolves outside the trusted workspace boundary. Both vulnerabilities affect Amazon Q Developer IDE plugins bundling Language Servers for AWS, including Visual Studio Code, JetBrains, Eclipse, and Visual Studio versions prior to specified fixed releases. Both issues are remediated in Language Servers for AWS version 1.69.0 and corresponding plugin versions.
Potential Impact
These vulnerabilities allow a local user to execute commands automatically or access files outside the trusted workspace boundary when opening maliciously crafted workspaces, contingent on the user trusting the workspace prompt. This could lead to unauthorized code execution or information disclosure within the context of the user's environment. The impact is limited by the requirement for local user interaction and trust acceptance.
Mitigation Recommendations
A fix is available in Language Servers for AWS version 1.69.0 and corresponding Amazon Q Developer plugin versions: Visual Studio Code >= 2.20, JetBrains >= 4.3, Eclipse >= 2.7.4, and Visual Studio Toolkit >= 1.94.0.0. Users and administrators should upgrade to these versions or later to remediate these vulnerabilities. No workarounds are available. Ensure any forked or derivative code incorporates these fixes.
Technical Details
- Article Source
- {"url":"https://aws.amazon.com/security/security-bulletins/rss/2026-047-aws/","fetched":true,"fetchedAt":"2026-06-23T16:19:34.159Z","wordCount":332}
Threat ID: 6a3ab216eed863c81e48e6c2
Added to database: 06/23/2026, 16:19:34 UTC
Last enriched: 06/23/2026, 16:19:41 UTC
Last updated: 06/23/2026, 23:18:57 UTC
Views: 37
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
External Links
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.