Cyber Resilience

CVE-2026-5429

High

Published: 02 April 2026

Published
02 April 2026
Modified
03 April 2026
KEV Added
Patch
CVSS Score v4 7.1 CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
EPSS Score 0.0003 9.7th percentile
Risk Priority 14 60% EPSS · 20% KEV · 20% CVSS

Summary

CVE-2026-5429 is a high-severity Cross-site Scripting (CWE-79) vulnerability in Amazon (inferred from references). Its CVSS base score is 7.1 (High).

Operationally, exploitation aligns with the MITRE ATT&CK technique Malicious File (T1204.002); ranked at the 9.7th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog.

The strongest mitigations our analysis identified are NIST 800-53 SI-10 (Information Input Validation) and SI-15 (Information Output Filtering).

Deeper analysis

CVE-2026-5429 affects the Kiro Agent webview in Kiro IDE versions before 0.8.140, where unsanitized input during web page generation allows arbitrary code execution. Specifically, a crafted color theme name can be exploited due to improper input handling, mapped to CWE-79 (cross-site scripting). The vulnerability was published on 2026-04-02 and carries a CVSS v3.1 base score of 7.8 (AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H), indicating high impact potential with low complexity and required user interaction.

A remote unauthenticated threat actor can exploit this by embedding malicious content in a workspace's color theme name. Exploitation occurs when a local user opens the workspace and explicitly trusts it upon prompting, enabling the attacker to execute arbitrary code on the victim's system with high confidentiality, integrity, and availability impacts.

Mitigation requires upgrading to Kiro IDE version 0.8.140. Official guidance appears in the AWS security bulletin at https://aws.amazon.com/security/security-bulletins/2026-012-aws/ and the Kiro changelog at https://kiro.dev/changelog/ide/0-8/#patch-0-8-140.

EU & UK References

Vulnerability details

Unsanitized input during web page generation in the Kiro Agent webview in Kiro IDE before version 0.8.140 allows a remote unauthenticated threat actor to execute arbitrary code via a potentially damaging crafted color theme name when a local user opens…

more

the workspace. This issue requires the user to trust the workspace when prompted. To remediate this issue, users should upgrade to version 0.8.140.

CWE(s)

Related Threats

MITRE ATT&CK Enterprise TechniquesAI

T1204.002 Malicious File Execution
An adversary may rely upon a user opening a malicious file in order to gain execution.
Why these techniques?

The vulnerability enables arbitrary code execution via a crafted malicious workspace color theme name that requires user interaction to open and trust, directly facilitating T1204.002 Malicious File.

Confidence: HIGH · MITRE ATT&CK Enterprise v18.1

CVEs Like This One

CVE-2021-47838Shared CWE-79
CVE-2026-42557Shared CWE-79
CVE-2026-25789Shared CWE-79
CVE-2026-0534Shared CWE-79
CVE-2026-0533Shared CWE-79
CVE-2025-0811Shared CWE-79
CVE-2021-47837Shared CWE-79
CVE-2025-1015Shared CWE-79
CVE-2021-47840Shared CWE-79
CVE-2026-0535Shared CWE-79

Affected Assets

Amazon
inferred from references and description; NVD did not file a CPE for this CVE

Mitigating Controls

Mitigating Controls (NIST 800-53 r5) AI

prevent

Directly mitigates unsanitized input in webview page generation by validating color theme names and rejecting malicious payloads before processing.

prevent

Prevents arbitrary code execution by filtering outputs during web page generation in the Kiro Agent webview to block XSS-like attacks from crafted inputs.

prevent

Ensures timely flaw remediation by upgrading to Kiro IDE 0.8.140, which fixes the input sanitization vulnerability.

References