Alpakka Kafka
1 CVEs
product
Monthly
Lightbend Alpakka Kafka before 5.0.0 logs its configuration as debug information, and thus log files may contain credentials (if plain cleartext login is configured). Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. No vendor patch available.
Information Disclosure
Alpakka Kafka
NVD
GitHub
CVSS 3.1
5.5
EPSS
0.2%
CVE-2023-29471
Maven
EPSS 0%
CVSS 5.5
MEDIUM
PATCH
This Month
Lightbend Alpakka Kafka before 5.0.0 logs its configuration as debug information, and thus log files may contain credentials (if plain cleartext login is configured). Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. No vendor patch available.
Information Disclosure
Alpakka Kafka
NVD
GitHub