VDB
WID-SEC-W-2025-1269
WID-SEC-W-2025-1269
PUBLISHED
CVSS 8.699999809265137 HIGH
Apache Kafka ist eine verteilte Streaming-Plattform mit einer Publish-Subcribe-Architektur (Pub-Sub).
Risk Scores
CVSS 4.0
8.699999809265137
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| IBM App Connect Enterprise LTS 12.0.14 | ||
| IBM Security Guardium 11.5 | ||
| for z/OS 10.1.0.0 | ||
| Apache Kafka <3.9.1 | ||
| IBM App Connect Enterprise <12.14.0 | ||
| Apache Kafka 3.9.1 | ||
| 13.0.1.0 | ||
| 12.0.1.0 | ||
| IBM QRadar SIEM 7.5.0 UP13 | ||
| Apache Kafka <4.0.0 | ||
| IBM App Connect Enterprise <LTS 12.0.14 | ||
| Apache Kafka 4.0.0 | ||
| IBM App Connect Enterprise 12.14.0 | ||
| IBM QRadar SIEM <7.5.0 UP13 | ||
| Red Hat Enterprise Linux |
Exploit Intelligence
- CVE-2025-27817 (github-poc)
- Apache Kafka客户端未对用户输入进行严格验证和限制,未经身份验证的攻击者可通过构造恶意配置读取环境变量或磁盘任意内容,或向非预期位置发送请求,提升REST API的文件系统/环境/URL访问权限。 (github-poc)
- CVE-2025-27817 (github-poc)
- https://seclists.org/oss-sec/2025/q2/237 (circl)
- https://www.ibm.com/support/pages/node/7242900 (circl)
- https://github.com/kk12-30/CVE-2025-27817 (circl)
- https://access.redhat.com/errata/RHSA-2025:9922 (circl)
- https://www.ibm.com/support/pages/node/7241535 (circl)
- https://www.ibm.com/support/pages/node/7241547 (circl)
- https://www.ibm.com/support/pages/node/7241589 (circl)
…and 9 more exploits
Timeline
- Jun 9, 2025 CVE Published
- Aug 24, 2025 CVE Updated
- Apr 29, 2026 Distribution Patch
References
- https://wid.cert-bund.de/.well-known/csaf/white/2025/wid-sec-w-2025-1269.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2025-1269 advisory
- https://seclists.org/oss-sec/2025/q2/235 url
- https://seclists.org/oss-sec/2025/q2/236 url
- https://seclists.org/oss-sec/2025/q2/237 url
- https://github.com/kk12-30/CVE-2025-27817 url
- https://access.redhat.com/errata/RHSA-2025:9922 url
- https://www.ibm.com/support/pages/node/7241535 url
- https://www.ibm.com/support/pages/node/7241547 url
- https://www.ibm.com/support/pages/node/7241589 url
- https://www.ibm.com/support/pages/node/7242900 url