Privilege Escalation via Self-Writable Cognito Custom Attribute in AWS Ops...

8.8 / 10

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Description

Improperly controlled modification of dynamically-determined object attributes in the Cognito User Pool configuration in AWS Ops Wheel before PR #165 allows remote authenticated users to escalate to deployment admin privileges and manage Cognito user accounts via a crafted UpdateUserAttributes API call that sets the custom:deployment_admin attribute.

To remediate this issue, users should redeploy from the updated repository and ensure any forked or derivative code is patched to incorporate the new fixes.

AI Analysis

Privilege escalation vulnerability in AWS Ops Wheel via self-writable Cognito custom attribute

Basic Information

ID CVE-2026-6912

Source AMZN

Published Apr 24, 2026 at 16:11

Modified Apr 24, 2026 at 16:48

Affected Product

Vendor AWS

Product AWS Ops Wheel

Affected Versions AWS AWS Ops Wheel 0

CWE Classification

CWE-915

AI Assessment

AI Score 8.8 / 10

AI Severity High

Vendor Amazon Web Services (AWS)

Product AWS Ops Wheel

References

{
    "lastseen": "",
    "description": "Improperly controlled modification of dynamically-determined object attributes in the Cognito User Pool configuration in AWS Ops Wheel before PR #165 allows remote authenticated users to escalate to deployment admin privileges and manage Cognito user accounts via a crafted UpdateUserAttributes API call that sets the custom:deployment_admin attribute.\n\nTo remediate this issue, users should redeploy from the updated repository and ensure any forked or derivative code is patched to incorporate the new fixes.",
    "published": "2026-04-24T16:11:45.833Z",
    "modified": "2026-04-24T16:48:22.475Z",
    "type": "cve",
    "title": "Privilege Escalation via Self-Writable Cognito Custom Attribute in AWS Ops Wheel",
    "source": "AMZN",
    "references": "https://github.com/aws/aws-ops-wheel/pull/165\nhttps://aws.amazon.com/security/security-bulletins/2026-018-aws/\nhttps://github.com/aws/aws-ops-wheel/security/advisories/GHSA-qvfh-9cjw-8wwq",
    "id": "CVE-2026-6912",
    "bulletinFamily": "",
    "cwe": [
        "CWE-915"
    ],
    "cvelist": null,
    "sourceData": "AWS AWS Ops Wheel 0",
    "sourceHref": "",
    "cvss": {
        "score": 8.8,
        "severity": "HIGH",
        "vector": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "AWS Ops Wheel",
    "version": "0",
    "vendor": "AWS",
    "ai_description": "Privilege escalation vulnerability in AWS Ops Wheel via self-writable Cognito custom attribute",
    "ai_severity": "High",
    "ai_vendor": "Amazon Web Services (AWS)",
    "ai_product": "AWS Ops Wheel",
    "ai_version": "0",
    "ai_score": 8.8
}

Privilege Escalation via Self-Writable Cognito Custom Attribute in AWS Ops Wheel_CVE-2026-6912