CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Amazon: >> Kiro Ide Security Vulnerabilities

CVE-2026-0830

Processing specially crafted workspace folder names could allow for arbitrary command injection in the Kiro GitLab Merge-Request helper in Kiro IDE before version 0.6.18 when opening maliciously crafted workspaces. To mitigate, users should update to the latest version.

CVSS Score

8.4

EPSS Score

0.0

Published

2026-01-09

Page 1

Vulnerabilities

Vulnerable Software

Amazon: >> Kiro Ide Security Vulnerabilities

Products

Pricing

Contact Us