Lucene search
+L

9 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 2:45 a.m.12 views

CVE-2023-30428

Incorrect Authorization vulnerability in Apache Software Foundation Apache Pulsar Broker's Rest Producer allows authenticated user with a custom HTTP header to produce a message to any topic using the broker's admin role. This issue affects Apache Pulsar Brokers: from 2.9.0 through 2.9.5, from...

8.2CVSS6.6AI score0.00819EPSS
Exploits0References1
Veracode
Veracode
added 2023/07/14 6:7 a.m.17 views

Incorrect Authorization

org.apache.pulsar:pulsar-broker is vulnerable to Incorrect Authorization. An authenticated users is able to send messages to any topic utilizing the broker's admin role by using the library's Rest producer. There are two risks for the impacted users: an attacker might send useless messages to any...

8.2CVSS6.8AI score0.00819EPSS
Exploits0References2Affected Software1
Github Security Blog
Github Security Blog
added 2023/07/12 12:31 p.m.26 views

Apache Pulsar Broker's Rest Producer vulnerable to Incorrect Authorization

Incorrect Authorization vulnerability in Apache Software Foundation Apache Pulsar Broker's Rest Producer allows authenticated user with a custom HTTP header to produce a message to any topic using the broker's admin role. This issue affects Apache Pulsar Brokers: from 2.9.0 through 2.9.5, from...

8.2CVSS6.5AI score0.00819EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2023/07/12 12:31 p.m.3 views

GHSA-J2R7-3RVW-G7GX Apache Pulsar Broker's Rest Producer vulnerable to Incorrect Authorization

Incorrect Authorization vulnerability in Apache Software Foundation Apache Pulsar Broker's Rest Producer allows authenticated user with a custom HTTP header to produce a message to any topic using the broker's admin role. This issue affects Apache Pulsar Brokers: from 2.9.0 through 2.9.5, from...

8.2CVSS7.2AI score0.00819EPSS
Exploits0References3
NVD
NVD
added 2023/07/12 10:15 a.m.30 views

CVE-2023-30428

Incorrect Authorization vulnerability in Apache Software Foundation Apache Pulsar Broker's Rest Producer allows authenticated user with a custom HTTP header to produce a message to any topic using the broker's admin role. This issue affects Apache Pulsar Brokers: from 2.9.0 through 2.9.5, from...

8.2CVSS8.1AI score0.00819EPSS
Exploits0References1
CVE
CVE
added 2023/07/12 9:10 a.m.78 views

CVE-2023-30428

CVE-2023-30428: Apache Pulsar Broker Rest Producer improper authorization allows an authenticated user with a custom HTTP header to produce messages to any topic using the broker’s admin role. Affected: Pulsar Brokers 2.9.0–2.9.5; 2.10.0–2.10.3; 2.11.0. Exploitation requires direct broker access ...

8.2CVSS8AI score0.00819EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2023/07/12 9:10 a.m.19 views

CVE-2023-30428 Apache Pulsar Broker: Incorrect Authorization Validation for Rest Producer

Incorrect Authorization vulnerability in Apache Software Foundation Apache Pulsar Broker's Rest Producer allows authenticated user with a custom HTTP header to produce a message to any topic using the broker's admin role. This issue affects Apache Pulsar Brokers: from 2.9.0 through 2.9.5, from...

8.2CVSS6.7AI score0.00819EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/07/12 9:10 a.m.37 views

CVE-2023-30428 Apache Pulsar Broker: Incorrect Authorization Validation for Rest Producer

Incorrect Authorization vulnerability in Apache Software Foundation Apache Pulsar Broker's Rest Producer allows authenticated user with a custom HTTP header to produce a message to any topic using the broker's admin role. This issue affects Apache Pulsar Brokers: from 2.9.0 through 2.9.5, from...

8.2CVSS8.3AI score0.00819EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2023/07/12 12:0 a.m.7 views

PT-2023-22685 · Apache · Apache Pulsar Broker

Name of the Vulnerable Software and Affected Versions: Apache Pulsar Broker versions 2.9.0 through 2.9.5 Apache Pulsar Broker versions 2.10.0 through 2.10.3 Apache Pulsar Broker version 2.11.0 Description: The issue is related to an Incorrect Authorization vulnerability in Apache Pulsar Broker's...

8.2CVSS7.7AI score0.00819EPSS
Exploits0References6
Rows per page
Query Builder