Known vulnerabilities in Apache Foundation Apache Kafka 2.2.0

Vendor: Apache Foundation

Website: https://www.apache.org

Total Security Bulletins: 6

Security bulletins (6)

Secuity bulletin	Severity	Status	Published
SB2025082612: Deserialization of untrusted data in Apache Kafka	High	Patched	26.08.2025
SB2024121826: Improper authentication in Apache Kafka SCRAM implementation	Medium	Patched	18.12.2024
SB2021092116: Timing attack in Apache Kafka	Low	Patched	21.09.2021
SB2020011418: Information disclosure in Apache Kafka	Low	Patched	14.01.2020
SB2019120206: Apache Kafka update for jackson-databind	High	Patched	02.12.2019
SB2019061119: Denial of service in Apache Kafka	Low	Patched	11.06.2019