Spring for apache kafka
This hub aggregates every CVE we track for Spring for apache kafka, a product in the oss libraries space. Use it to gauge the current risk picture and drill into individual advisories.
4
CVEs tracked
0
Critical
1
High
0
In CISA KEV
Severity distribution
MEDIUM3HIGH1
Monthly trend
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
3
2024-072026-06
Latest CVEs
The 4 most recently published vulnerabilities affecting Spring for apache kafka.
- CVE-2026-41731In Spring for Apache Kafka, overly broad trusted-package matching in header mappers exposes JDK classes to deserialization8.1
- CVE-2026-41727In Spring for Apache Kafka, forged retry topic headers subvert retry routing and backoff behavior6.5
- CVE-2026-41726In Spring for Apache Kafka, unbounded delegate cache keyed on user-controlled, potentially malicious selector header6.5
- CVE-2023-34040Java Deserialization vulnerability in Spring-Kafka When Improperly Configured5.3
Product normalization is registry-driven with AI assist and human review. How it works