Lucene search
K

6 matches found

NVD
NVD
added 2023/07/12 10:15 a.m.28 views

CVE-2023-31007

Improper Authentication vulnerability in Apache Software Foundation Apache Pulsar Broker allows a client to stay connected to a broker after authentication data expires if the client connected through the Pulsar Proxy when the broker is configured with authenticateOriginalAuthData=false or if a...

6.5CVSS5.6AI score0.00722EPSS
Exploits0References1
NVD
NVD
added 2023/07/12 10:15 a.m.30 views

CVE-2023-30428

Incorrect Authorization vulnerability in Apache Software Foundation Apache Pulsar Broker's Rest Producer allows authenticated user with a custom HTTP header to produce a message to any topic using the broker's admin role. This issue affects Apache Pulsar Brokers: from 2.9.0 through 2.9.5, from...

8.2CVSS8.1AI score0.0058EPSS
Exploits0References1
Prion
Prion
added 2023/07/12 10:15 a.m.24 views

Authorization

Incorrect Authorization vulnerability in Apache Software Foundation Apache Pulsar Broker's Rest Producer allows authenticated user with a custom HTTP header to produce a message to any topic using the broker's admin role. This issue affects Apache Pulsar Brokers: from 2.9.0 through 2.9.5, from...

5.5CVSS7.9AI score0.0058EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2023/07/12 9:10 a.m.19 views

CVE-2023-30428 Apache Pulsar Broker: Incorrect Authorization Validation for Rest Producer

Incorrect Authorization vulnerability in Apache Software Foundation Apache Pulsar Broker's Rest Producer allows authenticated user with a custom HTTP header to produce a message to any topic using the broker's admin role. This issue affects Apache Pulsar Brokers: from 2.9.0 through 2.9.5, from...

8.2CVSS6.7AI score0.0058EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/07/12 9:10 a.m.35 views

CVE-2023-30428 Apache Pulsar Broker: Incorrect Authorization Validation for Rest Producer

Incorrect Authorization vulnerability in Apache Software Foundation Apache Pulsar Broker's Rest Producer allows authenticated user with a custom HTTP header to produce a message to any topic using the broker's admin role. This issue affects Apache Pulsar Brokers: from 2.9.0 through 2.9.5, from...

8.2CVSS8.3AI score0.0058EPSS
Exploits0References1
CVE
CVE
added 2023/07/12 9:10 a.m.75 views

CVE-2023-30428

CVE-2023-30428: Apache Pulsar Broker Rest Producer improper authorization allows an authenticated user with a custom HTTP header to produce messages to any topic using the broker’s admin role. Affected: Pulsar Brokers 2.9.0–2.9.5; 2.10.0–2.10.3; 2.11.0. Exploitation requires direct broker access ...

8.2CVSS8AI score0.0058EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder