URL has been copied successfully!
Apache Kafka Arbitrary File Read and SSRF Vulnerability (CVE-2025-27817)
URL has been copied successfully!

Collecting Cyber-News from over 60 sources

Apache Kafka Arbitrary File Read and SSRF Vulnerability (CVE-2025-27817)


Tags: , , , , , , ,

Overview Recently, NSFOCUS CERT detected that Apache issued a security bulletin to fix the arbitrary file read and SSRF vulnerabilities in Apache Kafka (CVE-2025-27817); Because the Apache Kafka client does not strictly validate and restrict user input, an unauthenticated attacker can elevate the file system/environment/URL access rights of the REST API by constructing malicious configurations…The post Apache Kafka Arbitrary File Read and SSRF Vulnerability (CVE-2025-27817) appeared first on NSFOCUS, Inc., a global network and cyber security leader, protects enterprises and carriers from advanced cyber attacks..

First seen on securityboulevard.com

Jump to article: https://securityboulevard.com/2025/06/apache-kafka-arbitrary-file-read-and-ssrf-vulnerability-cve-2025-27817/

Loading

Share via Email
Share on Facebook
Tweet on X (Twitter)
Share on Whatsapp
Share on LinkedIn
Share on Xing
Copy link

also interesting:

  1. Treasury Department Breach: A Crucial Reminder for API Security in the Public Sector
  2. China-Nexus Nation State Actors Exploit SAP NetWeaver (CVE-2025-31324) to Target Critical Infrastructures
  3. 9 VPN alternatives for securing remote network access
  4. Apache Cassandra Vulnerability Allows Attackers to Gain Access Data Centers