Lucene search
K

4 matches found

CNNVD
CNNVD
added 2026/02/17 12:0 a.m.7 views

IBM DB2 Recovery Expert 安全漏洞

IBM DB2 Recovery Expert is a database recovery tool developed by IBM. The version IBM DB2 Recovery Expert for LUW 5.5 Interim Fix 002 contains a security vulnerability. This vulnerability arises from the transmission of data through plaintext communication channels, which may allow attackers to...

5.9CVSS5.8AI score0.00133EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2025/12/16 11:13 p.m.3 views

kafka: Apache Kafka: SCRAM authentication vulnerable to replay attacks when used without encryption

A flaw was found in Apache Kafka's implementation of the Salted Challenge Response Authentication Mechanism SCRAM, which did not fully adhere to the requirements of RFC 5802. Specifically, as per RFC 5802, the server must verify that the nonce sent by the client in the second message matches the...

5.3CVSS5.7AI score0.0078EPSS
Exploits0References8
RedHat Linux
RedHat Linux
added 2025/08/01 5:42 p.m.5 views

kafka: Apache Kafka: SCRAM authentication vulnerable to replay attacks when used without encryption

A flaw was found in Apache Kafka's implementation of the Salted Challenge Response Authentication Mechanism SCRAM, which did not fully adhere to the requirements of RFC 5802. Specifically, as per RFC 5802, the server must verify that the nonce sent by the client in the second message matches the...

5.3CVSS7.3AI score0.0078EPSS
Exploits0References8
RedHat Linux
RedHat Linux
added 2025/06/30 1:16 p.m.6 views

kafka: Apache Kafka: SCRAM authentication vulnerable to replay attacks when used without encryption

A flaw was found in Apache Kafka's implementation of the Salted Challenge Response Authentication Mechanism SCRAM, which did not fully adhere to the requirements of RFC 5802. Specifically, as per RFC 5802, the server must verify that the nonce sent by the client in the second message matches the...

5.3CVSS7.3AI score0.0078EPSS
Exploits0References8
Rows per page
Query Builder