Apache Software Foundation Kafka 0.10.2.1 Release Candidate 2

CPE Details

Apache Software Foundation Kafka 0.10.2.1 Release Candidate 2
apache
kafka
0.10.2.1
2021-12-07
14h58 +00:00
2021-12-07
19h47 +00:00
CPE NVD
Alerte pour un CPE
Restez informé de toutes modifications pour un CPE spécifique.
Gestion des notifications

CPE Name: cpe:2.3:a:apache:kafka:0.10.2.1:rc2:*:*:*:*:*:*

Informations

Vendor

apache

Product

kafka

Version

0.10.2.1

Update

rc2

Related CVE

Open and find in CVE List

CVE ID Publié Description Score Gravité
CVE-2017-12610 2018-07-26 14h00 +00:00 In Apache Kafka 0.10.0.0 to 0.10.2.1 and 0.11.0.0 to 0.11.0.1, authenticated Kafka clients may use impersonation via a manually crafted protocol message with SASL/PLAIN or SASL/SCRAM authentication when using the built-in PLAIN or SCRAM server implementations in Apache Kafka.
6.8
Moyen
CVE-2018-1288 2018-07-26 14h00 +00:00 In Apache Kafka 0.9.0.0 to 0.9.0.1, 0.10.0.0 to 0.10.2.1, 0.11.0.0 to 0.11.0.2, and 1.0.0, authenticated Kafka users may perform action reserved for the Broker via a manually created fetch request interfering with data replication, resulting in data loss.
5.4
Moyen