Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
apache kafka 2.8.0 vulnerabilities and exploits
(subscribe to this query)
5.9
CVSSv3
CVE-2024-8285
A flaw was found in Kroxylicious. When establishing the connection with the upstream Kafka server using a TLS secured connection, Kroxylicious fails to properly verify the server's hostname, resulting in an insecure connection. For a successful attack to be performed, the at...
Red Hat Streams For Apache Kafka 2.8.0
Red Hat Streams For Apache Kafka
Redhat Kroxylicious -
7.5
CVSSv3
CVE-2022-34917
A security vulnerability has been identified in Apache Kafka. It affects all releases since 2.8.0. The vulnerability allows malicious unauthenticated clients to allocate large amounts of memory on brokers. This can lead to brokers hitting OutOfMemoryException and causing denial o...
Apache Kafka
5.9
CVSSv3
CVE-2021-38153
Some components in Apache Kafka use `Arrays.equals` to validate a password or key, which is vulnerable to timing attacks that make brute force attacks for such credentials more likely to be successful. Users should upgrade to 2.8.1 or higher, or 3.0.0 or higher where this vulnera...
Apache Kafka
Apache Kafka 2.8.0
Quarkus Quarkus
Oracle Communications Brm - Elastic Charging Engine
Oracle Communications Brm - Elastic Charging Engine 12.0.0.5.0
Oracle Communications Cloud Native Core Policy 1.15.0
Oracle Financial Services Analytical Applications Infrastructure
Oracle Financial Services Behavior Detection Platform
Oracle Financial Services Behavior Detection Platform 8.1.1.0
Oracle Financial Services Behavior Detection Platform 8.1.1.1
Oracle Financial Services Behavior Detection Platform 8.1.2.0
Oracle Financial Services Enterprise Case Management 8.0.7.1
Preferred Score:
CVSSv3
CVSSv2
CVSSv3
CVSSv4
EPSS
VMScore
Recommendations:
CVE-2024-52884
CVE-2025-25085
CVE-2025-20124
login-box
CVE-2025-1114
bnielsen
log injection
CVE-2025-0411
metagauss
CVE-2024-57357
malicious code
file upload
impronta
Home
/
Search Results
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started