Org.apache.kafka:kafka_2.12
This hub aggregates every CVE we track for Org.apache.kafka:kafka_2.12, a product in the oss libraries space. Use it to gauge the current risk picture and drill into individual advisories.
4
CVEs tracked
0
Critical
2
High
0
In CISA KEV
Severity distribution
HIGH2MEDIUM2
Monthly trend
0
0
0
0
0
1
0
0
0
0
0
2
0
0
0
0
0
0
0
0
0
0
0
0
2024-072026-06
Latest CVEs
The 4 most recently published vulnerabilities affecting Org.apache.kafka:kafka_2.12.
- CVE-2025-27819Apache Kafka: Possible RCE/Denial of service attack via SASL JAAS JndiLoginModule configuration7.5
- CVE-2025-27818Apache Kafka: Possible RCE attack via SASL JAAS LdapLoginModule configuration8.8
- CVE-2024-56128Apache Kafka: SCRAM authentication vulnerable to replay attacks when used without encryption5.3
- CVE-2021-38153Timing Attack Vulnerability for Apache Kafka Connect and Clients5.9
Product normalization is registry-driven with AI assist and human review. How it works