Description

Apache Kafka is an open-source distributed event streaming platform used by thousands of companies for high-performance data pipelines, streaming analytics, data integration, and mission-critical applications.

Apache Kafka is designed to be accessed by trusted clients inside trusted environments. It's not recommended to have Apache Kafka service publicly accessible.

Remediation

It's recommended to restrict access to this service in production systems.

References

Kafka Security

Related Vulnerabilities

Apache JServ protocol service

WordPress 4.5.x Multiple Vulnerabilities (4.5 - 4.5.15)

Grails database console

WordPress Plugin WordPress Backup to Dropbox Information Disclosure (4.7.1)

JWT none algorithm

Severity

Medium

Classification

CWE-200 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:N

Tags

Configuration