CVE-2026-9133 - Arbitrary file read in rabbitmq-aws plugin

Plugin ยท 2026-06-05

Actions

Rate this issue

Technical Details

Affected Versions >=0.1.0, <=0.2.0
Regions all
CVE IDs CVE-2026-9133
Migration Required Yes
Cost Impact Neutral
IaC Impact High

What This Means

For DevOps Teams

Update the rabbitmq-aws plugin to version 0.2.1 and rotate any secrets stored in files accessible to the RabbitMQ process to address the arbitrary file read vulnerability (CVE-2026-9133).

For Platform Teams

Deploy the latest version of the rabbitmq-aws plugin (0.2.1) to ensure secure ARN resolution and protect sensitive data stored in AWS services from unauthorized access.

For Executives

Implement immediate security measures by upgrading to rabbitmq-aws version 0.2.1 to mitigate the risk of arbitrary file read vulnerability (CVE-2026-9133) and protect sensitive data stored in AWS services.

Source

View original AWS announcement โ†’

Weekly AWS Digest in Your Inbox

No spam, no headlines. Just a weekly summary of the 3โ€“7 AWS changes that matter for DevOps and Platform teams.

๐Ÿ“ง Exactly 1 email per week โ€ข Every Tuesday โ€ข Unsubscribe anytime

Today: AWS only. Coming next: Azure and other major clouds.