Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

3 matches found

Cvelist
Cvelistadded 6 days ago34 views

CVE-2026-45080 Klaw: Improper Access Control Allows Disclosure of Password Hash

Klaw is a self-service Apache Kafka Topic Management/Governance tool/portal. Prior to version 2.10.4, improper access control allows disclosure of password hash. This issue has been patched in version 2.10.4...

6.9CVSS0.00041EPSS
Exploits0References2
CVE
CVEadded 2026/02/11 9:0 p.m.7 views

CVE-2026-25999

Klaw (self-service Apache Kafka Topic Management/Governance tool) contains an improper access control vulnerability prior to v2.10.2 that allows an unauthorized user to trigger a reset or deletion of metadata for any tenant by calling the /resetMemoryCache endpoint. The CVE notes the impact as hi...

7.1CVSS5.6AI score0.00044EPSS
Exploits0References3Affected Software1
OSV
OSVadded 2026/02/11 9:0 p.m.2 views

CVE-2026-25999 Klaw has an improper authorisation check on /resetMemoryCache

Klaw is a self-service Apache Kafka Topic Management/Governance tool/portal. Prior to 2.10.2, there is an improper access control vulnerability that allows unauthorized users to trigger a reset or deletion of metadata for any tenant. By sending a crafted request to the /resetMemoryCache endpoint,...

7.1CVSS5.6AI score0.00044EPSS
Exploits0References5
Rows per page
Query Builder