Search for packages
| purl | pkg:maven/org.apache.kafka/kafka@0.11.0.0 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-46c6-rxp8-83eh
Aliases: CVE-2018-17196 GHSA-47w3-66wq-cpxg |
Improper Input Validation In Apache Kafka it is possible to manually craft a Produce request which bypasses transaction/idempotent ACL validation. |
Affected by 1 other vulnerability. |
|
VCID-ydc4-by57-bkbm
Aliases: CVE-2018-1288 GHSA-gh27-38p5-mrxc |
Information Exposure In Apache Kafka authenticated users may perform action reserved for the Broker via a manually created fetch request interfering with data replication, resulting in data loss. |
Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| This package is not known to fix vulnerabilities. | ||
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2026-04-04T14:32:02.102712+00:00 | GHSA Importer | Affected by | VCID-46c6-rxp8-83eh | https://github.com/advisories/GHSA-47w3-66wq-cpxg | 38.1.0 |
| 2026-04-01T16:00:51.106303+00:00 | GHSA Importer | Affected by | VCID-ydc4-by57-bkbm | https://github.com/advisories/GHSA-gh27-38p5-mrxc | 38.0.0 |
| 2026-04-01T12:48:34.039819+00:00 | GitLab Importer | Affected by | VCID-46c6-rxp8-83eh | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.kafka/kafka/CVE-2018-17196.yml | 38.0.0 |