red hat streams for apache kafka vulnerabilities and exploits

(subscribe to this query)

A flaw was found in Kroxylicious. When establishing the connection with the upstream Kafka server using a TLS secured connection, Kroxylicious fails to properly verify the server's hostname, resulting in an insecure connection. For a successful attack to be performed, the at...

Red Hat Streams For Apache Kafka 2.8.0 Red Hat Streams For Apache Kafka Redhat Kroxylicious -

A vulnerability was found in Undertow. This issue requires enabling the learning-push handler in the server's config, which is disabled by default, leaving the maxAge config in the handler unconfigured. The default is -1, which makes the handler vulnerable. If someone overwr...

Red Hat Red Hat Build Of Quarkus 3.8.6.redhat Red Hat Red Hat Jboss Enterprise Application Platform 7 Red Hat Red Hat Jboss Enterprise Application Platform 7.4 For Rhel 8 Red Hat Red Hat Jboss Enterprise Application Platform 7.4 For Rhel 9 Red Hat Red Hat Jboss Enterprise Application Platform 7.4 On Rhel 7 Red Hat Red Hat Jboss Enterprise Application Platform 8 Red Hat Openshift Serverless Red Hat Red Hat Build Of Apache Camel For Quarkus Red Hat Red Hat Build Of Apache Camel For Spring Boot 4 Red Hat Red Hat Build Of Apache Camel - Hawtio Red Hat Red Hat Build Of Apicurio Registry Red Hat Red Hat Build Of Keycloak

A flaw was found in Keycloak's OIDC component in the "checkLoginIframe," which allows unvalidated cross-origin messages. This flaw allows malicious users to coordinate and send millions of requests in seconds using simple code, significantly impacting the applicati...

Red Hat Red Hat Amq Broker 7 Red Hat Red Hat Build Of Keycloak 22 Red Hat Red Hat Build Of Keycloak 22.0.10 Red Hat Red Hat Single Sign-on 7.6 For Rhel 7 Red Hat Red Hat Single Sign-on 7.6 For Rhel 8 Red Hat Red Hat Single Sign-on 7.6 For Rhel 9 Red Hat Rhel-8 Based Middleware Containers Red Hat Rhoss-1.33-rhel-8 Red Hat Rhsso 7.6.8 Red Hat Migration Toolkit For Applications 6 Red Hat Migration Toolkit For Applications 7 Red Hat Red Hat Build Of Apicurio Registry

A vulnerability was found in Golang FIPS OpenSSL. This flaw allows a malicious user to randomly cause an uninitialized buffer length variable with a zeroed buffer to be returned in FIPS mode. It may also be possible to force a false positive match between non-equal hashes when co...

Red Hat Red Hat Enterprise Linux 7 Extended Lifecycle Support Red Hat Red Hat Enterprise Linux 8 Red Hat Red Hat Enterprise Linux 9 Red Hat Red Hat Enterprise Linux 9.4 Extended Update Support Red Hat Nbde Tang Server Red Hat Openshift Developer Tools And Services Red Hat Openshift Pipelines Red Hat Openshift Serverless Red Hat Red Hat Ansible Automation Platform 1.2 Red Hat Red Hat Ansible Automation Platform 2 Red Hat Red Hat Enterprise Linux 7 Red Hat Red Hat Openshift Container Platform 4

A security vulnerability has been identified in Apache Kafka. It affects all releases since 2.8.0. The vulnerability allows malicious unauthenticated clients to allocate large amounts of memory on brokers. This can lead to brokers hitting OutOfMemoryException and causing denial o...

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Product List Vendor List Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook