Lightbend Alpakka Kafka before 5.0.0 logs its configuration as debug information, and thus log files may contain credentials (if plain cleartext login is configured). This occurs in akka.kafka.internal.KafkaConsumerActor.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2023-04-27T00:00:00

Updated: 2024-08-02T14:07:46.431Z

Reserved: 2023-04-06T00:00:00

Link: CVE-2023-29471

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2023-04-27T21:15:10.710

Modified: 2024-11-21T07:57:07.910

Link: CVE-2023-29471

cve-icon Redhat

No data.