CVE-2026-7791 - Local Privilege Escalation via TOCTOU Race Condition in Amazon WorkSpaces Skylight Agent
Workspaces Skylight ยท 2026-06-05
Actions
Technical Details
| Affected Versions | < 2.6.2034.0 |
|---|---|
| Regions | all |
| CVE IDs | CVE-2026-7791 |
| Migration Required | Yes |
| Cost Impact | Neutral |
| IaC Impact | High |
What This Means
For DevOps Teams
Update the Amazon Skylight Workspace Config Service to version 2.6.2034.0 to address the TOCTOU race condition vulnerability (CVE-2026-7791) and ensure system security by rebooting impacted WorkSpaces.
For Platform Teams
Deploy the updated Amazon Skylight Workspace Config Service to maintain system integrity and security, reducing the risk of unauthorized privilege escalation.
For Executives
Implement the latest version of the Amazon Skylight Workspace Config Service to mitigate the risk of local privilege escalation via CVE-2026-7791, ensuring enhanced security for your WorkSpaces environment.
Source
Related Workspaces Skylight Updates
- Amazon WorkSpaces Personal now supports WorkSpace Migration for Linux WorkSpaces (2026-05-22)
- Amazon WorkSpaces now lets AI agents operate desktop applications (Preview) (2026-05-05)
- Modernize your workflows: Amazon WorkSpaces now gives AI agents their own desktop (preview) (2026-05-05)
- CVE-2026-7791 - Local Privilege Escalation via TOCTOU Race Condition in Amazon WorkSpaces Skylight Agent (2026-05-04)
- Amazon WorkSpaces Applications now supports host-to-client URL redirection (2026-05-04)