Known vulnerabilities in Apache Foundation Apache Kafka 3.3.2
4.1.1
4.0.1
4.1.0
3.9.1
4.0.0
3.7.2
3.9.0
3.8.1
3.8.0
3.7.1
3.6.2
3.7.0
3.5.2
3.6.1
3.6.0
3.5.1
3.5.0
3.4.1
3.4.0
3.3.2
3.3.1
3.3.0
3.2.3
3.0.2
3.2.2
3.1.2
2.8.2
3.2.1
3.1.1
3.2.0
3.0.1
3.1.0
2.6.3
2.7.2
3.0.0
2.8.1
2.7.1
2.6.2
2.8.0
2.7.0
2.6.1
2.5.1
2.6.0
2.5.0
2.4.1
2.4.0
2.2.2
2.3.1
2.3.0
2.2.1
2.2.0
0.8.2.2
0.8.2.1
0.8.2.0
0.8.1.1
0.8.1.0
0.8.1
0.8.0
0.11.0.3
1.1.0
1.0.1
1.0.0
0.9.0.1
0.9.0.0
2.1.1
2.1.0
2.0.1
2.0.0
1.1.1
1.0.2
0.10.2.2
0.11.0.2
0.11.0.1
0.11.0.0
0.10.2.1
0.10.2.0
0.10.1.1
0.10.1.0
0.10.0.1
0.10.0.0
Security bulletins (6)
| Secuity bulletin | Severity | Status | Published |
|---|---|---|---|
| SB2025082612: Deserialization of untrusted data in Apache Kafka | High | 26.08.2025 | |
| SB20250704102: Deserialization of untrusted data in Apache Kafka | Medium | 04.07.2025 | |
| SB2025070339: SSRF in Apache Kafka Client | High | 03.07.2025 | |
| SB2024121826: Improper authentication in Apache Kafka SCRAM implementation | Medium | 18.12.2024 | |
| SB2023071946: Multiple vulnerabilities in Oracle Communications Convergent Charging Controller | High | 19.07.2023 | |
| SB2023021101: Deserialization of untrused data in Apache Kafka Connect | Low | 11.02.2023 |