CVE-2026-6911— Authentication Bypass via Missing JWT Signature Verification in AWS Ops Wheel
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2026-6911
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Authentication Bypass via Missing JWT Signature Verification in AWS Ops Wheel
Source: NVD (National Vulnerability Database)
Vulnerability Description
Missing JWT signature verification in AWS Ops Wheel allows unauthenticated attackers to forge JWT tokens and gain unintended administrative access to the application, including the ability to read, modify, and delete all application data across tenants and manage Cognito user accounts within the deployment's User Pool, via a crafted JWT sent to the API Gateway endpoint. To remediate this issue, users should redeploy from the updated repository and ensure any forked or derivative code is patched to incorporate the new fixes.
Source: NVD (National Vulnerability Database)
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Source: NVD (National Vulnerability Database)
Vulnerability Type
密码学签名的验证不恰当
Source: NVD (National Vulnerability Database)
Vulnerability Title
AWS Ops Wheel 数据伪造问题漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
AWS Ops Wheel是Amazon Web Services开源的一个支持多租户的随机选择工具。 AWS Ops Wheel存在数据伪造问题漏洞,该漏洞源于缺少JWT签名验证,可能导致未经身份验证的攻击者伪造JWT令牌并获得未授权的管理访问权限,包括读取、修改和删除所有应用程序数据以及管理Cognito用户账户。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Shenlong Deep Dive — AI Deep Analysis
10-question deep dive: root cause, exploitation, mitigation, urgency. Read summary free, full version requires login.
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| AWS | AWS Ops Wheel | 0 ~ 163 | - |
II. Public POCs for CVE-2026-6911
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
Qwen3.6-35B-A3B · 8898 chars
Paid plan includes:
In-depth vulnerability mechanism
Trigger conditions & impact
Full executable POC code
Exploit chain & mitigation
POC zip download
100+ AI POC generations per month
III. Intelligence Information for CVE-2026-6911
请登录查看更多情报信息。
Same Patch Batch · AWS · 2026-04-24 · 5 CVEs total
| CVE-2026-6912 | 8.8 HIGH | Privilege Escalation via Self-Writable Cognito Custom Attribute in AWS Ops Wheel |
| CVE-2026-6968 | 5.9 MEDIUM | Multiple Path Traversal Variants in awslabs/tough |
| CVE-2026-6967 | 5.9 MEDIUM | Missing Delegated Metadata Validation in awslabs/tough |
| CVE-2026-6966 | 5.3 MEDIUM | Signature Threshold Bypass in awslabs/tough Delegated Roles |
IV. Related Vulnerabilities
Same vendor: AWS
- CVE-2026-7461
OS Command Injection in Amazon ECS Agent via FSx Windows Fil - CVE-2026-7426
Out-of-Bounds Write via Unsanitized Prefix Length in Router - CVE-2026-7425
Out-of-Bounds Read in Router Advertisement Option Parser in - CVE-2026-7424
Integer Underflow in DHCPv6 Sub-Option Parser in FreeRTOS-Pl - CVE-2026-7423
Integer Underflow in ICMP Echo Reply Processing in FreeRTOS-
Same weakness: CWE-347
- CVE-2026-42193
Plunk: SNS webhook forgery - CVE-2026-44497
ZEBRA: Consensus Divergence in Transparent Sighash Hash-Type - CVE-2026-41669
Admidio: SAML Signature Validation Result Ignored — Forged A - CVE-2026-7689
Dolibarr ERP CRM Online Signature security.lib.php dol_verif - CVE-2026-33467
Improper Verification of Cryptographic Signature in Elastic
V. Comments for CVE-2026-6911
No comments yet