cve/CVE-2017-12610.md at 32646c20e71810932fbd5e08aba28eaca6211a4d

admin/cve

mirror of https://github.com/0xMarcio/cve.git synced 2025-12-14 20:08:44 +00:00

0xMarcio 48a00929ac Removed duplicates

2024-06-18 02:51:15 +02:00

Description

In Apache Kafka 0.10.0.0 to 0.10.2.1 and 0.11.0.0 to 0.11.0.1, authenticated Kafka clients may use impersonation via a manually crafted protocol message with SASL/PLAIN or SASL/SCRAM authentication when using the built-in PLAIN or SCRAM server implementations in Apache Kafka.

POC

Reference

https://www.oracle.com/security-alerts/cpujul2020.html

Github

https://github.com/isxbot/software-assurance

793 B Raw Blame History

CVE-2017-12610

Description

POC

Reference

Github

793 B

Raw Blame History