CVE-2018-1288

moderate-risk

Published 2018-07-26

In Apache Kafka 0.9.0.0 to 0.9.0.1, 0.10.0.0 to 0.10.2.1, 0.11.0.0 to 0.11.0.2, and 1.0.0, authenticated Kafka users may perform action reserved for the Broker via a manually created fetch request interfering with data replication, resulting in data loss.

Do I need to act?

0.69% chance of exploitation

EPSS score — low exploit probability

Not on CISA KEV list

No confirmed active exploitation reported to CISA

Patch status unknown

Check vendor advisories for fix availability and mitigation guidance

CVSS 5.4/10 Medium

NETWORK / LOW complexity

Affected Products (10)

Kafka

Jboss Middleware Text-Only Advisories

Database

Primavera P6 Enterprise Project Portfolio Management

Timesten In-Memory Database

Affected Vendors

Redhat Apache Oracle

References (20)

Broken Link http://www.securityfocus.com/bid/104900

Third Party Advisory https://access.redhat.com/errata/RHSA-2018:3768

https://lists.apache.org/thread.html/29f61337323f48c47d4b41d74b9e452bd60e65d0e51...

https://lists.apache.org/thread.html/519eb0fd45642dcecd9ff74cb3e71c20a4753f7d82e...

https://lists.apache.org/thread.html/b0656d359c7d40ec9f39c8cc61bca66802ef9a2a12e...

https://lists.apache.org/thread.html/d1581fb6464c9bec8a72575c01f5097d68e2fbb230a...

https://lists.apache.org/thread.html/f9bc3e55f4e28d1dcd1a69aae6d53e609a758e34d28...

https://lists.apache.org/thread.html/r07e1bbd1643847d599feb34c707906a4fdcc81e3a6...

https://lists.apache.org/thread.html/r35322aec467ddae34002690edaa4d9f16e7df9b5bf...

Patch https://www.oracle.com/security-alerts/cpujul2020.html