Lightbend Alpakka Kafka before 5.0.0 logs its configuration as debug information, and thus log files may contain credentials (if plain cleartext login is configured). This occurs in akka.kafka.internal.KafkaConsumerActor.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2023-04-27T00:00:00
Updated: 2024-08-02T14:07:46.431Z
Reserved: 2023-04-06T00:00:00
Link: CVE-2023-29471
Vulnrichment
No data.
NVD
Status : Modified
Published: 2023-04-27T21:15:10.710
Modified: 2024-11-21T07:57:07.910
Link: CVE-2023-29471
Redhat
No data.