Primary

Context

Amazon WorkSpaces Skylight Agent Improper Privilege Management Vulnerability Allowing Local Privilege Escalation

Vulnerability

A vulnerability in the Skylight Workspace Config Service of Amazon WorkSpaces for Windows, prior to version 2.6.2034.0, allows local non-admin authenticated users to bypass file system permission protections. This is achieved by exploiting improper privilege management in the log rotation mechanism, enabling the placement of arbitrary files into various locations. The vulnerability leads to unauthorized privilege escalation to the SYSTEM level.

Impact

Exploitation of this vulnerability allows local non-admin authenticated users to escalate privileges to the SYSTEM level.

Remediation

Users are advised to upgrade to version 2.6.2034.0 or later.

Added: May 4, 2026, 10:20 PM

Updated: May 4, 2026, 10:20 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

2.9

remediation

0.0

relevance

7.4

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

2.9

remediation

0.0

relevance

7.4

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Amazon WorkSpaces Skylight Agent Improper Privilege Management Vulnerability Allowing Local Privilege Escalation

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating