Linux Distros Unpatched Vulnerability : CVE-2026-33558

🗓️ 21 Apr 2026 00:00:00Reported by TenableType

Unpatched Linux/Unix hosts expose Kafka requests in DEBUG logs due to vulnerability 2026 33558; upgrade Kafka.

Reporter	Title	Published	Views	Family All 44
IBM Security Bulletins	Security Bulletin: There is a vulnerability in kafka-clients-3.9.1.jar used by IBM Maximo Manage application in IBM Maximo Application Suite (CVE-2026-33558)	29 May 202608:58	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities in IBM DevOps Solution Workbench	7 May 202612:35	–	ibm
ATTACKERKB	CVE-2026-33558	20 Apr 202613:20	–	attackerkb
Chainguard	CVE-2026-33558 vulnerabilities	2 May 202607:17	–	cgr
Circl	CVE-2026-33558	17 Apr 202609:17	–	circl
CNNVD	Apache Kafka 安全漏洞	20 Apr 202600:00	–	cnnvd
CVE	CVE-2026-33558	20 Apr 202613:20	–	cve
Cvelist	CVE-2026-33558 Apache Kafka, Apache Kafka Clients: Information Exposure Through Network Client Log Output	20 Apr 202613:20	–	cvelist
EUVD	EUVD-2026-23849	20 Apr 202615:31	–	euvd
Github Security Blog	Apache Kafka exposes sensitive information in its DEBUG logs	20 Apr 202615:31	–	github

Source	Link
ubuntu	www.ubuntu.com/security/CVE-2026-33558
cve	www.cve.mitre.org/cgi-bin/cvename.cgi

#%NASL_MIN_LEVEL 80900
##
# (C) Tenable, Inc.
##

include('compat.inc');

if (description)
{
  script_id(308166);
  script_version("1.1");
  script_set_attribute(attribute:"plugin_modification_date", value:"2026/04/21");

  script_cve_id("CVE-2026-33558");

  script_name(english:"Linux Distros Unpatched Vulnerability : CVE-2026-33558");

  script_set_attribute(attribute:"synopsis", value:
"The Linux/Unix host has one or more packages installed with a vulnerability that the vendor indicates will not be
patched.");
  script_set_attribute(attribute:"description", value:
"The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied
patch available.

  - Information exposure vulnerability has been identified in Apache Kafka. The NetworkClient component will
    output entire requests and responses information in the DEBUG log level in the logs. By default, the log
    level is set to INFO level. If the DEBUG level is enabled, the sensitive information will be exposed via
    the requests and responses output log. The entire lists of impacted requests and responses are: *
    AlterConfigsRequest * AlterUserScramCredentialsRequest * ExpireDelegationTokenRequest *
    IncrementalAlterConfigsRequest * RenewDelegationTokenRequest * SaslAuthenticateRequest *
    createDelegationTokenResponse * describeDelegationTokenResponse * SaslAuthenticateResponse This issue
    affects Apache Kafka: from any version supported the listed API above through v3.9.1, v4.0.0. We advise
    the Kafka users to upgrade to v3.9.2, v4.0.1, or later to avoid this vulnerability. (CVE-2026-33558)

Note that Nessus relies on the presence of the package as reported by the vendor.");
  script_set_attribute(attribute:"see_also", value:"https://ubuntu.com/security/CVE-2026-33558");
  script_set_attribute(attribute:"solution", value:
"There is no known solution at this time.");
  script_set_attribute(attribute:"agent", value:"unix");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:U/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:U/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2026-33558");

  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"false");
  script_set_attribute(attribute:"vendor_unpatched", value:"true");

  script_set_attribute(attribute:"vuln_publication_date", value:"2026/04/20");
  script_set_attribute(attribute:"plugin_publication_date", value:"2026/04/21");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:canonical:ubuntu_linux:18.04:-:lts");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:kafka");
  script_set_attribute(attribute:"generated_plugin", value:"current");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"Misc.");

  script_copyright(english:"This script is Copyright (C) 2026 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("ssh_get_info2.nasl", "set_linux_os_id.nasl");
  script_require_keys("Host/cpu", "Host/local_checks_enabled", "global_settings/vendor_unpatched", "Host/OS/identifier");
  script_require_ports("Host/OS/Ubuntu Linux-18.04");

  exit(0);
}

if (!get_kb_item("global_settings/vendor_unpatched")) exit(0, "Unpatched Vulnerabilities Detection not active.");
if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
if (empty_or_null(get_one_kb_item("Host/Debian/dpkg-l"))) audit(AUDIT_PACKAGE_LIST_MISSING);

include('linux_unpatched.inc');

var distro_constraints_array = {
  "Ubuntu Linux-18.04": {
    "package_manager": "dpkg-l",
    "constraints": [
      {
        "release": "18.04",
        "pkgs": [
          {"reference": "kafka"}
        ]
      }
    ]
  }
};

var distro_constraints_values = linux_unpatched::get_distro_constraints(distro_constraints_arr:distro_constraints_array);
if (empty_or_null(distro_constraints_values)) audit(AUDIT_HOST_NOT, 'affected');
var report = linux_unpatched::check_unpatched_constraints(distro_constraints_values:distro_constraints_values);

if (!empty_or_null(report))
{
  security_report_v4(
      port       : 0,
      severity   : SECURITY_WARNING,
      extra      : report
  );
  exit(0);
}
else
{
  audit(AUDIT_HOST_NOT, 'affected');
}

21 Apr 2026 00:00Current

5.7Medium risk

Vulners AI Score5.7

CVSS 3.15.3

EPSS0.00169

SSVC