Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:maven/org.apache.pulsar/pulsar@2.10.4
purl pkg:maven/org.apache.pulsar/pulsar@2.10.4
Vulnerabilities affecting this package (0)
Vulnerability Summary Fixed by
This package is not known to be affected by vulnerabilities.
Vulnerabilities fixed by this package (1)
Vulnerability Summary Aliases
VCID-bsyh-2rap-33h2 Incorrect Authorization vulnerability in Apache Software Foundation Apache Pulsar. This issue affects Apache Pulsar: before 2.10.4, and 2.11.0. When a client connects to the Pulsar Function Worker via the Pulsar Proxy where the Pulsar Proxy uses mTLS authentication to authenticate with the Pulsar Function Worker, the Pulsar Function Worker incorrectly performs authorization by using the Proxy's role for authorization instead of the client's role, which can lead to privilege escalation, especially if the proxy is configured with a superuser role. The recommended mitigation for impacted users is to upgrade the Pulsar Function Worker to a patched version. 2.10 Pulsar Function Worker users should upgrade to at least 2.10.4. 2.11 Pulsar Function Worker users should upgrade to at least 2.11.1. 3.0 Pulsar Function Worker users are unaffected. Any users running the Pulsar Function Worker for 2.9.* and earlier should upgrade to one of the above patched versions. CVE-2023-30429
GHSA-g9cv-v3v4-3h8r

Date Actor Action Vulnerability Source VulnerableCode Version
2026-06-07T20:49:51.356221+00:00 GHSA Importer Fixing VCID-bsyh-2rap-33h2 https://github.com/advisories/GHSA-g9cv-v3v4-3h8r 38.6.0
2026-06-04T17:20:17.742952+00:00 GithubOSV Importer Fixing VCID-bsyh-2rap-33h2 https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2023/07/GHSA-g9cv-v3v4-3h8r/GHSA-g9cv-v3v4-3h8r.json 38.6.0
2026-06-02T04:45:21.577049+00:00 GitLab Importer Fixing VCID-bsyh-2rap-33h2 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.pulsar/pulsar/CVE-2023-30429.yml 38.6.0