Org.apache.kafka:kafka-clients
This hub aggregates every CVE we track for Org.apache.kafka:kafka-clients, a product in the oss libraries space. Use it to gauge the current risk picture and drill into individual advisories.
4
CVEs tracked
0
Critical
1
High
0
In CISA KEV
Severity distribution
MEDIUM3HIGH1
Monthly trend
0
0
0
0
1
0
0
0
0
0
0
1
0
0
0
0
0
0
0
0
0
0
0
0
2024-072026-06
Latest CVEs
The 4 most recently published vulnerabilities affecting Org.apache.kafka:kafka-clients.
- CVE-2025-27817Apache Kafka Client: Arbitrary file read and SSRF vulnerability7.5
- CVE-2024-31141Apache Kafka Clients: Privilege escalation to filesystem read-access via automatic ConfigProvider6.5
- CVE-2021-38153Timing Attack Vulnerability for Apache Kafka Connect and Clients5.9
- CVE-2017-12610In Apache Kafka 0.10.0.0 to 0.10.2.1 and 0.11.0.0 to 0.11.0.1, authenticated Kafka clients may use impersonation via a manually crafted protocol message with SASL/PLAIN or SASL/SCRAM authentication...6.8
Product normalization is registry-driven with AI assist and human review. How it works