CVE-2025-61673
Karapace is an open-source Kafka REST and Schema Registry implementation. Affected versions 5.0.0 and 5.0.1 contain an authentication bypass when OAuth 2.0 Bearer Token authentication is configured: if a request arrives without an Authorization header, the token validation logic is skipped entire...