Lucene search
K

24 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2025/11/06 10:40 a.m.6 views

Security Bulletin: Security vulnerabilities in Apache kafka-client may affect IBM Business Automation Workflow - CVE-2025-27817, CVE-2025-27818

Summary IBM Business Automation Workflow packages a copy of Apache kafka-client with known vulnerabilities. Vulnerability Details CVEID:CVE-2025-27818 DESCRIPTION: A possible security vulnerability has been identified in Apache Kafka. This requires access to a alterConfig to the cluster resource,...

8.8CVSS6.6AI score0.62368EPSS
Exploits2Affected Software2
IBM Security Bulletins
IBM Security Bulletins
added 2025/09/15 1:10 p.m.7 views

Security Bulletin: IBM Maximo Application Suite - Monitor Component is vulnerable to kafka-clients-3.9.0.jar CVE-2025-27818, CVE-2025-27817

Summary IBM Maximo Application Suite - Monitor Component is vulnerable to kafka-clients-3.9.0.jar CVE-2025-27818, CVE-2025-27817. This bulletin identifies the steps to take to address the vulnerabilities. Vulnerability Details CVEID:CVE-2025-27818 DESCRIPTION: A possible security vulnerability ha...

8.8CVSS6.8AI score0.62368EPSS
Exploits2Affected Software1
OSV
OSV
added 2025/06/14 5:43 a.m.7 views

BIT-KAFKA-2025-27819 Apache Kafka: Possible RCE/Denial of service attack via SASL JAAS JndiLoginModule configuration

In CVE-2023-25194, we announced the RCE/Denial of service attack via SASL JAAS JndiLoginModule configuration in Kafka Connect API. But not only Kafka Connect API is vulnerable to this attack, the Apache Kafka brokers also have this vulnerability. To exploit this vulnerability, the attacker needs ...

7.5CVSS7.7AI score0.00878EPSS
Exploits0References2
OSV
OSV
added 2025/06/14 5:43 a.m.6 views

BIT-KAFKA-2025-27818 Apache Kafka: Possible RCE attack via SASL JAAS LdapLoginModule configuration

A possible security vulnerability has been identified in Apache Kafka. This requires access to a alterConfig to the cluster resource, or Kafka Connect worker, and the ability to create/modify connectors on it with an arbitrary Kafka client SASL JAAS config and a SASL-based security protocol, whic...

8.8CVSS8.8AI score0.00881EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/06/10 2:59 p.m.7 views

CVE-2025-27819

A flaw was found in org.apache.kafka. The JndiLoginModule within the SASL authentication mechanism allows remote code execution and denial of service when misconfigured. This flaw allows an attacker to provide a malicious JNDI URI within the Kafka broker's configuration, permitting arbitrary code...

8.8CVSS8AI score0.00878EPSS
Exploits0References4
OSV
OSV
added 2025/06/10 9:30 a.m.1 views

GHSA-MCWH-C9PG-XW43 Apache Kafka Deserialization of Untrusted Data vulnerability

In CVE-2023-25194, we announced the RCE/Denial of service attack via SASL JAAS JndiLoginModule configuration in Kafka Connect API. But not only Kafka Connect API is vulnerable to this attack, the Apache Kafka brokers also have this vulnerability. To exploit this vulnerability, the attacker needs ...

8.8CVSS5.7AI score0.00878EPSS
Exploits0References4
Github Security Blog
Github Security Blog
added 2025/06/10 9:30 a.m.13 views

Apache Kafka Deserialization of Untrusted Data vulnerability

A possible security vulnerability has been identified in Apache Kafka. This requires access to a alterConfig to the cluster resource, or Kafka Connect worker, and the ability to create/modify connectors on it with an arbitrary Kafka client SASL JAAS config and a SASL-based security protocol, whic...

8.8CVSS8.8AI score0.00881EPSS
Exploits0References4Affected Software3
Github Security Blog
Github Security Blog
added 2025/06/10 9:30 a.m.25 views

Apache Kafka Deserialization of Untrusted Data vulnerability

In CVE-2023-25194, we announced the RCE/Denial of service attack via SASL JAAS JndiLoginModule configuration in Kafka Connect API. But not only Kafka Connect API is vulnerable to this attack, the Apache Kafka brokers also have this vulnerability. To exploit this vulnerability, the attacker needs ...

8.8CVSS7.7AI score0.95302EPSS
Exploits8References4Affected Software8
ATTACKERKB
ATTACKERKB
added 2025/06/10 8:15 a.m.3 views

CVE-2025-27818

A possible security vulnerability has been identified in Apache Kafka. This requires access to a alterConfig to the cluster resource, or Kafka Connect worker, and the ability to create/modify connectors on it with an arbitrary Kafka client SASL JAAS config and a SASL-based security protocol, whic...

8.8CVSS5.9AI score0.00881EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2025/06/10 7:54 a.m.12 views

CVE-2025-27819 Apache Kafka: Possible RCE/Denial of service attack via SASL JAAS JndiLoginModule configuration

In CVE-2023-25194, we announced the RCE/Denial of service attack via SASL JAAS JndiLoginModule configuration in Kafka Connect API. But not only Kafka Connect API is vulnerable to this attack, the Apache Kafka brokers also have this vulnerability. To exploit this vulnerability, the attacker needs ...

7.5CVSS6.3AI score0.00878EPSS
Exploits0References3
Cvelist
Cvelist
added 2025/06/10 7:54 a.m.87 views

CVE-2025-27819 Apache Kafka: Possible RCE/Denial of service attack via SASL JAAS JndiLoginModule configuration

In CVE-2023-25194, we announced the RCE/Denial of service attack via SASL JAAS JndiLoginModule configuration in Kafka Connect API. But not only Kafka Connect API is vulnerable to this attack, the Apache Kafka brokers also have this vulnerability. To exploit this vulnerability, the attacker needs ...

0.00878EPSS
Exploits0References1
CVE
CVE
added 2025/06/10 7:54 a.m.145 views

CVE-2025-27819

CVE-2025-27819 describes a Kafka vulnerability enabling RCE/Denial of Service via SASL JAAS JndiLoginModule configuration, affecting Kafka Connect API and Apache Kafka brokers. Exploitation requires network access to the cluster and the AlterConfigs permission on the cluster resource. The root ca...

7.5CVSS6.8AI score0.00878EPSS
Exploits0References1Affected Software1
Snyk
Snyk
added 2025/06/10 7:52 a.m.3 views

Deserialization of Untrusted Data

Overview org.apache.kafka:kafka-clients is a streaming platform that can publish and subscribe to streams of records, store streams of records in a fault-tolerant durable way, and process streams of records as they occur. Affected versions of this package are vulnerable to Deserialization of...

8.8CVSS8AI score0.00881EPSS
Exploits0References2
OSV
OSV
added 2025/06/10 7:52 a.m.5 views

CVE-2025-27818 Apache Kafka: Possible RCE attack via SASL JAAS LdapLoginModule configuration

A possible security vulnerability has been identified in Apache Kafka. This requires access to a alterConfig to the cluster resource, or Kafka Connect worker, and the ability to create/modify connectors on it with an arbitrary Kafka client SASL JAAS config and a SASL-based security protocol, whic...

8.8CVSS6.5AI score0.00881EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2025/06/10 7:52 a.m.4 views

CVE-2025-27818 Apache Kafka: Possible RCE attack via SASL JAAS LdapLoginModule configuration

A possible security vulnerability has been identified in Apache Kafka. This requires access to a alterConfig to the cluster resource, or Kafka Connect worker, and the ability to create/modify connectors on it with an arbitrary Kafka client SASL JAAS config and a SASL-based security protocol, whic...

8.8AI score0.00881EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/06/10 7:52 a.m.66 views

CVE-2025-27818 Apache Kafka: Possible RCE attack via SASL JAAS LdapLoginModule configuration

A possible security vulnerability has been identified in Apache Kafka. This requires access to a alterConfig to the cluster resource, or Kafka Connect worker, and the ability to create/modify connectors on it with an arbitrary Kafka client SASL JAAS config and a SASL-based security protocol, whic...

0.00881EPSS
Exploits0References1
CVE
CVE
added 2025/06/10 7:52 a.m.194 views

CVE-2025-27818

Summary of CVE-2025-27818 (Apache Kafka): The issue involves an authenticated operator who, via alterConfig on a cluster resource (or Kafka Connect worker) and by modifying connector configs through the REST API, can set sasl.jaas.config on Kafka clients to an LDAP/JndiLoginModule path (e.g., com...

8.8CVSS7.2AI score0.00881EPSS
Exploits0References2Affected Software1
Positive Technologies
Positive Technologies
added 2025/06/09 12:0 a.m.2 views

PT-2025-24621

Name of the Vulnerable Software and Affected Versions Apache Kafka versions prior to 3.4.0 Apache Kafka versions 3.4.0 through 3.9.0 Description The issue concerns a Remote Code Execution RCE and Denial of Service attack via the SASL JAAS JndiLoginModule configuration in the Kafka Connect API and...

9CVSS6.5AI score0.62368EPSS
Exploits2References22
OSV
OSV
added 2023/02/07 9:30 p.m.69 views

GHSA-26F8-X7CC-WQPC Apache Kafka Connect vulnerable to Deserialization of Untrusted Data

A possible security vulnerability has been identified in Apache Kafka Connect API. This requires access to a Kafka Connect worker, and the ability to create/modify connectors on it with an arbitrary Kafka client SASL JAAS config and a SASL-based security protocol, which has been possible on Kafka...

8.8CVSS8.7AI score0.95302EPSS
Exploits8References6
Github Security Blog
Github Security Blog
added 2023/02/07 9:30 p.m.60 views

Apache Kafka Connect vulnerable to Deserialization of Untrusted Data

A possible security vulnerability has been identified in Apache Kafka Connect API. This requires access to a Kafka Connect worker, and the ability to create/modify connectors on it with an arbitrary Kafka client SASL JAAS config and a SASL-based security protocol, which has been possible on Kafka...

8.8CVSS8.6AI score0.95302EPSS
Exploits8References6Affected Software1
Rows per page
Query Builder