CVE-2025-9039 - Issue with Amazon ECS agent introspection server

2025 018 ยท 2026-06-05

Actions

Rate this issue

Technical Details

Affected Versions 0.0.3 through 1.97.0
Regions all
CVE IDs CVE-2025-9039
Migration Required Yes
Cost Impact Neutral
IaC Impact High

What This Means

For DevOps Teams

Update the ECS agent to version 1.97.1 or modify EC2 security groups to restrict access to the introspection server port (51678) to address the security vulnerability CVE-2025-9039.

For Platform Teams

Deploy the updated ECS agent version 1.97.1 across your container instances to resolve the security issue and maintain the security posture of your container orchestration environment.

For Executives

Implement the latest ECS agent version 1.97.1 to mitigate the security risk posed by CVE-2025-9039 and ensure the security of your containerized applications.

Source

View original AWS announcement โ†’

Weekly AWS Digest in Your Inbox

No spam, no headlines. Just a weekly summary of the 3โ€“7 AWS changes that matter for DevOps and Platform teams.

๐Ÿ“ง Exactly 1 email per week โ€ข Every Tuesday โ€ข Unsubscribe anytime

Today: AWS only. Coming next: Azure and other major clouds.