CVE-2023-29471

Lightbend Alpakka Kafka before 5.0.0 logs its configuration as debug information, and thus log files may contain credentials if plain cleartext login is configured. This occurs in akka.kafka.internal.KafkaConsumerActor...

EUVD-2021-1078

Malware in sbrugna...

Insertion Of Sensitive Information Into Log File

Apache Pulsar is vulnerable to Insertion of Sensitive Information into Log File. The vulnerability is due to sensitive data exposure due to logging of plaintext Kafka credentials in application logs by various Kafka connectors...

Insertion of Sensitive Information into Log File

Overview Affected versions of this package are vulnerable to Insertion of Sensitive Information into Log File. An attacker with access to the log files can gain access to Apache Kafka credentials by accessing these application logs. Remediation Upgrade...

Insertion of Sensitive Information into Log File

Overview Affected versions of this package are vulnerable to Insertion of Sensitive Information into Log File. An attacker with access to the log files can gain access to Apache Kafka credentials by accessing these application logs. Remediation Upgrade org.apache.pulsar:pulsar-io-kafka to version...

jaegertracing/jaeger information disclosure vulnerability

Jaeger is an open source distributed system monitoring service released by the Linux Foundation , it is mainly used to monitor the distributed system transactions and troubleshooting and so on. A log information disclosure vulnerability exists in versions of jaegertracing/jaeger before 1.18.1. An...

CVE-2020-10750

Sensitive information written to a log file vulnerability was found in jaegertracing/jaeger before version 1.18.1 when the Kafka data store is used. This flaw allows an attacker with access to the container's log file to discover the Kafka credentials...