Authentication Bypass via Missing JWT Signature Verification in AWS Ops...

9.8 / 10

CRITICAL

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Description

Missing JWT signature verification in AWS Ops Wheel allows unauthenticated attackers to forge JWT tokens and gain unintended administrative access to the application, including the ability to read, modify, and delete all application data across tenants and manage Cognito user accounts within the deployment's User Pool, via a crafted JWT sent to the API Gateway endpoint.

To remediate this issue, users should redeploy from the updated repository and ensure any forked or derivative code is patched to incorporate the new fixes.

AI Analysis

Authentication bypass vulnerability due to missing JWT signature verification in AWS Ops Wheel, allowing unauthenticated attackers to gain administrative access to the application.

Basic Information

ID CVE-2026-6911

Source AMZN

Published Apr 24, 2026 at 16:08

Modified Apr 24, 2026 at 16:13

Affected Product

Vendor AWS

Product AWS Ops Wheel

Affected Versions AWS AWS Ops Wheel 0

CWE Classification

CWE-347

AI Assessment

AI Score 9.8 / 10

AI Severity Critical

Vendor Amazon Web Services (AWS)

Product AWS Ops Wheel

References

{
    "lastseen": "",
    "description": "Missing JWT signature verification in AWS Ops Wheel allows unauthenticated attackers to forge JWT tokens and gain unintended administrative access to the application, including the ability to read, modify, and delete all application data across tenants and manage Cognito user accounts within the deployment's User Pool, via a crafted JWT sent to the API Gateway endpoint.\n\nTo remediate this issue, users should redeploy from the updated repository and ensure any forked or derivative code is patched to incorporate the new fixes.",
    "published": "2026-04-24T16:08:45.808Z",
    "modified": "2026-04-24T16:13:28.829Z",
    "type": "cve",
    "title": "Authentication Bypass via Missing JWT Signature Verification in AWS Ops Wheel",
    "source": "AMZN",
    "references": "https://aws.amazon.com/security/security-bulletins/2026-018-aws/\nhttps://github.com/aws/aws-ops-wheel/pull/164\nhttps://github.com/aws/aws-ops-wheel/security/advisories/GHSA-v5vr-8w3c-37x2",
    "id": "CVE-2026-6911",
    "bulletinFamily": "",
    "cwe": [
        "CWE-347"
    ],
    "cvelist": null,
    "sourceData": "AWS AWS Ops Wheel 0",
    "sourceHref": "",
    "cvss": {
        "score": 9.8,
        "severity": "CRITICAL",
        "vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "AWS Ops Wheel",
    "version": "0",
    "vendor": "AWS",
    "ai_description": "Authentication bypass vulnerability due to missing JWT signature verification in AWS Ops Wheel, allowing unauthenticated attackers to gain administrative access to the application.",
    "ai_severity": "Critical",
    "ai_vendor": "Amazon Web Services (AWS)",
    "ai_product": "AWS Ops Wheel",
    "ai_version": "0",
    "ai_score": 9.8
}

Authentication Bypass via Missing JWT Signature Verification in AWS Ops Wheel_CVE-2026-6911