CVE-2019-12399

Risk Scores

Affected Products

Exploit Intelligence

• [kafka-users] 20200113 CVE-2019-12399: Apache Kafka Connect REST API may expose plaintext secrets in tasks endpoint (circl)
• [oss-security] 20200113 CVE-2019-12399: Apache Kafka Connect REST API may expose plaintext secrets in tasks endpoint (circl)
• [announce] 20200113 CVE-2019-12399: Apache Kafka Connect REST API may expose plaintext secrets in tasks endpoint (circl)
• [kafka-dev] 20200113 CVE-2019-12399: Apache Kafka Connect REST API may expose plaintext secrets in tasks endpoint (circl)
• [kafka-commits] 20200115 [kafka-site] branch asf-site updated: Add CVE-2019-12399 (#250) (circl)
• [druid-commits] 20200126 [GitHub] [druid] clintropolis opened a new pull request #9259: fix build by updating kafka client to 2.2.2 for CVE-2019-12399 (circl)
• [druid-commits] 20200126 [GitHub] [druid] suneet-s commented on a change in pull request #9259: fix build by updating kafka client to 2.2.2 for CVE-2019-12399 (circl)
• [druid-commits] 20200126 [GitHub] [druid] clintropolis commented on a change in pull request #9259: fix build by updating kafka client to 2.2.2 for CVE-2019-12399 (circl)
• [druid-commits] 20200126 [GitHub] [druid] clintropolis commented on issue #9259: fix build by updating kafka client to 2.2.2 for CVE-2019-12399 (circl)
• [druid-commits] 20200127 [GitHub] [druid] ccaominh opened a new pull request #9261: Address CVE-2019-12399 (circl)

…and 20 more exploits

Timeline

• CVE Published
• Apr 14, 2021 EPSS Score
• Jun 23, 2021 EPSS Score
• Oct 26, 2021 EPSS Score
• Dec 27, 2021 EPSS Score
• Feb 4, 2022 EPSS Score
• Feb 28, 2022 EPSS Score
• Apr 1, 2022 EPSS Score
• Jul 3, 2022 EPSS Score
• Sep 4, 2022 EPSS Score
• Nov 6, 2022 EPSS Score
• Mar 7, 2023 EPSS Score

References

• https://wid.cert-bund.de/.well-known/csaf/white/2022/wid-sec-w-2022-2344.json advisory
• https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2022-2344 advisory
• https://www.ibm.com/support/pages/node/6845363 advisory