VDB
CGA-9j28-2jv5-qv67
CGA-9j28-2jv5-qv67
REJECTED
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Wolfi | kafka-iamguarded-compat-4.0 | 0, 0, 0 |
| Wolfi | kafka-4.0 | 0, 0, 0 |
| Wolfi | kafka-bitnami-compat-4.0 | 0, 0, 0 |
| Chainguard | kafka-iamguarded-compat-4.0 | 0, 0, 0 |
| Chainguard | kafka-4.0 | 0, 0, 0 |
| Chainguard | kafka-bitnami-compat-4.0 | 0, 0, 0 |
Exploit Intelligence
- Apache's commons-lang2 v2.6 with a backported fix for CVE-2025-48924 (github-poc)
- pom-common.xml (github-poc)
- VulnerableDependencies.kt (github-poc)
- EncryptionUtil.java (github-poc)
- druid-612f0710.json (github-poc)
- dockerscan.yml (github-poc)
- owasp-suppressions-pending.xml (github-poc)
- pom.xml (github-poc)
- pom.xml (github-poc)
- dependencyCheckSuppression.xml (github-poc)
…and 3 more exploits
Timeline
- Jan 28, 2026 CVE Rejected