Unauthenticated Takeover: Severe RabbitMQ Flaw Exposes Confidential OAuth Secrets

RabbitMQ is the fundamental “plumbing” running silently behind major enterprise architectures—handling the routing, buffering, and background delivery of everything from multi-tenant user data to transaction logs. However, a severe access control vulnerability has cast a bright spotlight on this foundational infrastructure.

Tracked as CVE-2026-57219 (assigned a high-severity CVSS score of 8.7), this flaw allows completely unauthenticated, remote attackers to extract the broker’s confidential OAuth client secret. Armed with this secret, a malicious actor can impersonate the message broker, trick identity providers, and achieve total administrative takeover of the system.

Anatomy of the Flaw: The Forgotten Endpoint

The vulnerability stems from an obsolete and overlooked API endpoint within RabbitMQ’s Management Plugin interface: GET /api/auth.

Initially introduced in early 2024 with the launch of RabbitMQ version 3.13.0, this endpoint was meant to assist with legacy authentication routines. However, security researchers at Miggo Security discovered that the endpoint lacked any robust authorization layer. If an administrator configured RabbitMQ to use an OAuth 2.0 or OpenID Connect (OIDC) identity provider (like Microsoft Entra ID, Okta/Auth0, Keycloak, or Cloud Foundry UAA) using the standard management.oauth_client_secret property, the endpoint would freely disclose that secret to anyone who queried it via standard HTTP. No login credentials, session tokens, or elevated permissions required.

				
					[Unauthenticated Attacker] 
      │
      ▼  (HTTP GET /api/auth)
[RabbitMQ Exposed Management Port]
      │
      ▼  (Exposes Plaintext OAuth Secret)
[Attacker Impersonates Broker to Identity Provider (e.g., Keycloak / Entra ID)]
      │
      ▼  (Forges Admin Access Token)
[FULL CONTROL over Users, Queues, and Virtual Hosts]
				
			

The Chain of Compromise

For environments relying on a confidential client configuration, the consequences are stark:

  1. Extraction: An attacker sends a single HTTP request to the vulnerable endpoint.

  2. Impersonation: The attacker takes the leaked client secret to the enterprise Identity Provider (IdP).

  3. Token Forgery: The IdP issues a valid administrative token, believing the request came from RabbitMQ itself.

  4. Full Takeover: With admin tokens in hand, the attacker gains full control over users, internal configurations, message payloads, and active queues.

Note: Environments are only vulnerable if the RabbitMQ Management Plugin is active and an OAuth client secret has been explicitly configured. If no client secret exists, the endpoint returns empty, avoiding exploitation.

Accompanying Risk: CVE-2026-57221

Alongside the severe secret leak, maintainers addressed a secondary, medium-severity flaw discovered by the same research team: CVE-2026-57221 (CVSS 5.3). This is a missing authorization check during passive queue and exchange declarations.

While it requires an attacker to be authenticated, users with absolutely no assigned privileges can exploit it to map out existing queues, read operational statistics, and gauge overall business workload volumes. This makes it an ideal reconnaissance vector in multi-tenant environments where distinct application teams share a single virtual host.

Remediation and Mitigation Steps

The maintainers at Broadcom/RabbitMQ addressed the core issue by removing the obsolete endpoint entirely. Modern OAuth configurations are now provisioned via an authenticated bootloader mechanism that never exposes values over plain HTTP.

If you run RabbitMQ within your infrastructure, implement the following roadmap immediately:

  • Upgrade the Broker: Deploy the patched releases as soon as possible. The fixes are actively rolled out to all major support branches: 3.13.15+, 4.0.20+, 4.1.11+, 4.2.6+, and 4.3.0+.

  • Rotate the OAuth Secret: Merely patching the software will not secure you if an attacker already pulled your credentials. Treat your current OAuth client secret as compromised and rotate it via your identity provider.

  • Implement Temporary WAF Rules: If an immediate hot-upgrade is blocked by operational guidelines, leverage a Web Application Firewall (WAF) rule to explicitly block or drop all inbound traffic targeting the GET /api/auth endpoint.

  • Segment the Network: The management UI should never face the public internet. Wrap the interface inside corporate VPNs, IP allowlists, or Zero Trust Network Access (ZTNA) perimeters.

References

Facebook
Twitter
LinkedIn
WhatsApp
Reddit
Telegram
Unauthenticated Takeover: Severe RabbitMQ Flaw Exposes Confidential OAuth Secrets
Scroll to top