What is 2026-033-AWS?

2026-033-AWS is a security advisory published by AWS Security Bulletins. CVE-2026-8838 - Remote Code Execution in amazon-redshift-python-driver

Which CVE IDs does 2026-033-AWS cover?

2026-033-AWS covers the following CVE IDs: CVE-2026-8838. Each CVE has its own detail page on EchelonGraph Pulse with the synthesized EG score.

2026-033-AWS

CVE-2026-8838 - Remote Code Execution in amazon-redshift-python-driver

Vendor

AWS Security Bulletins

Published

May 18, 2026

Last Modified

—

🔗 CVE IDs covered (1)

CVE-2026-8838 →

📋 Description

Bulletin ID: 2026-033-AWS Scope: AWS Content Type: Important (requires attention) Publication Date: 05/18/2026 13:45 PM PDT Description: amazon-redshift-python-driver is the official Python connector for Amazon Redshift. We identified a code injection issue in versions 2.1.13 and earlier that could allow a rogue server or man-in-the-middle to execute arbitrary code on the client. Impacted versions: Please refer to the article below for the most up-to-date and complete information related to this AWS Security Bulletin.

🔗 References (1)

advisoryhttps://aws.amazon.com/security/security-bulletins/rss/2026-033-aws/