CVE-2017-12610

Posted on 2018년 7월 26일2018년 7월 27일 by admin

CVE-2017-12610

In Apache Kafka 0.10.0.0 to 0.10.2.1 and 0.11.0.0 to 0.11.0.1, authenticated Kafka clients may use impersonation via a manually crafted protocol message with SASL/PLAIN or SASL/SCRAM authentication when using the built-in PLAIN or SCRAM server implementations in Apache Kafka.

Source: CVE-2017-12610

답글 남기기 응답 취소