CVE-2023-29471
5.5MEDIUMLightbend Alpakka Kafka before 5.0.0 logs its configuration as debug information, and thus log files may contain credentials (if plain cleartext login is configured). This occurs in akka.kafka.interna
게시됨: 4/27/2023업데이트됨: 1/31/2025
설명
Lightbend Alpakka Kafka before 5.0.0 logs its configuration as debug information, and thus log files may contain credentials (if plain cleartext login is configured). This occurs in akka.kafka.internal.KafkaConsumerActor.
AI 분석AI 기반
영향받는 제품
lightbendalpakka_kafka
참조
- https://akka.io/security/alpakka-kafka-cve-2023-29471.htmlVendor Advisory
- https://github.com/akka/alpakka-kafka/issues/1592Issue Tracking
- https://akka.io/security/alpakka-kafka-cve-2023-29471.htmlVendor Advisory
- https://github.com/akka/alpakka-kafka/issues/1592Issue Tracking