Site icon API Security Blog

Missing Authentication

io. strimzi, strimzi is vulnerable to Missing Authentication. The vulnerability is due to improper access control implementation in the Kafka Connect REST API within the STRIMZI Project. The vulnerability allows attackers to exploit the API to potentially deny service for Kafka Mirroring, mirror topics' content to their own Kafka cluster using a malicious connector and bypass Kafka ACLs (Access Control Lists) due to a lack of…Read More

Exit mobile version