12 matches found
CLEANSTART-2026-PV53006 Security fixes for CVE-2025-67030, CVE-2026-33811, CVE-2026-33814, CVE-2026-34479, CVE-2026-39817, CVE-2026-39819, CVE-2026-39820, CVE-2026-39823, CVE-2026-39825, CVE-2026-39826, CVE-2026-39836, CVE-2026-42499, CVE-2026-42501, ghsa-6fmv-xxpf-w3cw, ghsa-72hv-8253-57qq applied in versions: 8.2.0-r0, 8.2.0-r1, 8.2.0-r2
Multiple security vulnerabilities affect the confluent-kafka package. These issues are resolved in later releases. See references for individual vulnerability details...
EUVD-2025-202372
Malicious code in confluent-kafka npm...
Malicious Package
Overview confluent-kafka is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...
Malicious code in confluent-kafka (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 80f8f3691acc10147a767bd08facab31e59a8acfb8d38c89df1400e263cc6f8f The package confluent-kafka was found to contain malicious code. Source: ghsa-malware 135e8cf2cd5582b8ed8562c5f5ccfd1cf7265319ad340463b750b75e341858e...
MAL-2025-192405 Malicious code in confluent-kafka (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 80f8f3691acc10147a767bd08facab31e59a8acfb8d38c89df1400e263cc6f8f The package confluent-kafka was found to contain malicious code. Source: ghsa-malware 135e8cf2cd5582b8ed8562c5f5ccfd1cf7265319ad340463b750b75e341858e...
GHSA-QH8G-58PP-2WXH vulnerabilities
Vulnerabilities for packages: apache-nifi, celeborn, apache-pulsar-fips, akhq, strimzi-kafka-operator, pinot, confluent-kafka-jre-bcfips, spark-kubernetes-operator, zookeeper-fips, spark-fips, confluent-kafka, clojure, trino, neo4j, zaproxy, wso2is, hadoop-client-modules, clojure-tools, pinot-fip...
GHSA-G8M5-722R-8WHQ vulnerabilities
Vulnerabilities for packages: apache-nifi, celeborn, jenkins, confluent-kafka, strimzi-kafka-operator, cloudwatch-exporter, kafka, confluent-kafka-jre-bcfips, solr, spark, zookeeper-fips, cassandra-reaper, spark-fips, zookeeper, apache-tika, druid...
CVE-2024-8184 vulnerabilities
Vulnerabilities for packages: apache-nifi, celeborn, jenkins, confluent-kafka, strimzi-kafka-operator, cloudwatch-exporter, kafka, confluent-kafka-jre-bcfips, solr, spark, zookeeper-fips, cassandra-reaper, spark-fips, zookeeper, apache-tika, druid...
CVE-2024-6763 vulnerabilities
Vulnerabilities for packages: apache-nifi, celeborn, apache-pulsar-fips, akhq, strimzi-kafka-operator, pinot, confluent-kafka-jre-bcfips, spark-kubernetes-operator, zookeeper-fips, spark-fips, confluent-kafka, clojure, trino, neo4j, zaproxy, wso2is, hadoop-client-modules, clojure-tools, pinot-fip...
CVE-2024-47554 vulnerabilities
Vulnerabilities for packages: apache-nifi, celeborn, strimzi-kafka-operator, management-api-for-apache-cassandra-4.1, confluent-common-docker, confluent-kafka-jre-bcfips, sonarqube, zookeeper-fips, opensearch, sonarqube-10, confluent-kafka, py3.10-vllm-cuda-11.8,...
GHSA-735F-PC8J-V9W8 vulnerabilities
Vulnerabilities for packages: wavefront-proxy, kube-fluentd-operator, celeborn, kserve-modelmesh, sonarqube-10, opensearch, tez, thingsboard, apache-nifi, confluent-kafka, trino...
CVE-2024-7254 vulnerabilities
Vulnerabilities for packages: wavefront-proxy, kube-fluentd-operator, celeborn, kserve-modelmesh, sonarqube-10, opensearch, tez, thingsboard, apache-nifi, confluent-kafka, trino...