12 matches found
CLEANSTART-2026-PV53006 Security fixes for CVE-2025-67030, CVE-2026-33811, CVE-2026-33814, CVE-2026-34479, CVE-2026-39817, CVE-2026-39819, CVE-2026-39820, CVE-2026-39823, CVE-2026-39825, CVE-2026-39826, CVE-2026-39836, CVE-2026-42499, CVE-2026-42501, ghsa-6fmv-xxpf-w3cw, ghsa-72hv-8253-57qq applied in versions: 8.2.0-r0, 8.2.0-r1, 8.2.0-r2
Multiple security vulnerabilities affect the confluent-kafka package. These issues are resolved in later releases. See references for individual vulnerability details...
EUVD-2025-202372
Malicious code in confluent-kafka npm...
Malicious Package
Overview confluent-kafka is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...
Malicious code in confluent-kafka (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 80f8f3691acc10147a767bd08facab31e59a8acfb8d38c89df1400e263cc6f8f The package confluent-kafka was found to contain malicious code. Source: ghsa-malware 135e8cf2cd5582b8ed8562c5f5ccfd1cf7265319ad340463b750b75e341858e...
MAL-2025-192405 Malicious code in confluent-kafka (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 80f8f3691acc10147a767bd08facab31e59a8acfb8d38c89df1400e263cc6f8f The package confluent-kafka was found to contain malicious code. Source: ghsa-malware 135e8cf2cd5582b8ed8562c5f5ccfd1cf7265319ad340463b750b75e341858e...
GHSA-QH8G-58PP-2WXH vulnerabilities
Vulnerabilities for packages: apache-pulsar, celeborn, wso2is, apache-nifi, spark, zaproxy, trino, spark-fips, zookeeper-fips, spark-kubernetes-operator-fips, neo4j, solr, clojure, akhq, zookeeper, hadoop-client-modules, strimzi-kafka-operator-fips, pinot, confluent-kafka,...
GHSA-G8M5-722R-8WHQ vulnerabilities
Vulnerabilities for packages: solr, confluent-kafka-jre-bcfips, celeborn, apache-nifi, druid, zookeeper, spark-fips, strimzi-kafka-operator, cassandra-reaper, confluent-kafka, prometheus-jmx-exporter, spark, zookeeper-fips, jenkins, kafka, apache-tika, cloudwatch-exporter...
CVE-2024-6763 vulnerabilities
Vulnerabilities for packages: apache-pulsar, celeborn, wso2is, apache-nifi, spark, zaproxy, trino, spark-fips, zookeeper-fips, spark-kubernetes-operator-fips, neo4j, solr, clojure, akhq, zookeeper, hadoop-client-modules, strimzi-kafka-operator-fips, pinot, confluent-kafka,...
CVE-2024-8184 vulnerabilities
Vulnerabilities for packages: solr, confluent-kafka-jre-bcfips, celeborn, apache-nifi, druid, zookeeper, spark-fips, strimzi-kafka-operator, cassandra-reaper, confluent-kafka, prometheus-jmx-exporter, spark, zookeeper-fips, jenkins, kafka, apache-tika, cloudwatch-exporter...
CVE-2024-47554 vulnerabilities
Vulnerabilities for packages: sonarqube, celeborn, apache-nifi, wildfly, py3.10-vllm-cuda-11.8, druid, management-api-for-apache-cassandra-4.1, kserve-modelmesh, zookeeper-fips, management-api-for-apache-cassandra-4.0, opensearch, logstash, confluent-common-docker, zookeeper, hadoop-client-module...
GHSA-735F-PC8J-V9W8 vulnerabilities
Vulnerabilities for packages: kube-fluentd-operator, celeborn, thingsboard, wavefront-proxy, sonarqube-10, opensearch, tez, trino, confluent-kafka, apache-nifi, kserve-modelmesh...
CVE-2024-7254 vulnerabilities
Vulnerabilities for packages: kube-fluentd-operator, celeborn, thingsboard, wavefront-proxy, sonarqube-10, opensearch, tez, trino, confluent-kafka, apache-nifi, kserve-modelmesh...