A recently disclosed vulnerability in the Amazon WorkSpaces client for Linux exposes a critical security flaw that could allow attackers to gain unauthorized access to user environments due to improper handling of authentication tokens.
The issue, tracked as CVE-2025-12779, has prompted urgent action from Amazon Web Services (AWS) and serves as an essential reminder for users to keep their software up to date and secure.
| CVE ID | Impacted Products | Impacted Versions | CVSS Score | Resolution |
| CVE-2025-12779 | Amazon WorkSpaces client for Linux | 2023.0 through 2024.8 | Pending | Upgrade to 2025.0 |
Vulnerability Overview: Exposed Tokens in WorkSpaces Client
On November 5, 2025, AWS released security bulletin AWS-2025-025 detailing the improper management of authentication tokens in specific versions of the Amazon WorkSpaces client for Linux.
According to the announcement, versions 2023.0 through 2024.8 are affected due to flaws in how the client handles authentication tokens for DCV-based WorkSpaces.
The vulnerability may allow other local users on the same machine to extract a valid authentication token that the WorkSpaces client unintentionally left accessible.
If leveraged, a malicious local user could access another individual’s Workspace session essentially giving them control over that person’s private virtual environments.
This risk is significant in shared systems, multi-user environments, or any scenario where more than one user has access to the same Linux device.
All users running the Amazon WorkSpaces client for Linux versions 2023.0 through 2024.8 are at risk. AWS has proactively notified organizations and individuals about the end of support for these affected versions, urging them to update immediately.
The company has addressed the issue in version 2025.0, and security teams are strongly advised to upgrade to this latest release or a newer one to remediate the vulnerability fully.
Users can download the fixed version by visiting the official Amazon WorkSpaces Client Download page. AWS also encourages anyone with security concerns regarding this issue to reach out directly to [email protected].
The vulnerability highlights the ongoing need for robust token management and regular updates in cloud desktop environments.
Quick action and heightened awareness remain crucial as organizations increasingly rely on virtual workspace solutions in modern IT infrastructures.
Follow us on Google News, LinkedIn, and X to Get Instant Updates and Set GBH as a Preferred Source in Google.