CVE-2017-12610

Published: 2018-07-26T14:29Z

Last Modified: 2024-11-21T03:09Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

In Apache Kafka 0.10.0.0 to 0.10.2.1 and 0.11.0.0 to 0.11.0.1, authenticated Kafka clients may use impersonation via a manually crafted protocol message with SASL/PLAIN or SASL/SCRAM authentication when using the built-in PLAIN or SCRAM server implementations in Apache Kafka. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt