CVE-2026-33557 | Apache Kafka 4.1.0 JWT Token improper authentication

Inserito da Angelo Barbosa | Apr 17, 2026 | CVE

A vulnerability identified as critical has been detected in Apache Kafka 4.1.0. The affected element is an unknown function of the component JWT Token Handler. This manipulation causes improper authentication.

This vulnerability is registered as CVE-2026-33557. Remote exploitation of the attack is possible. No exploit is available.

You should upgrade the affected component.

CVE-2026-33557 | Apache Kafka 4.1.0 JWT Token improper authentication

Post correlati

CVE-2024-57982 | Linux Kernel up to 6.12.12/6.13.1 xfrm_dst_hash out-of-bounds

CVE-2024-52982 | Adobe Animate up to 23.0.8/24.0.5 input validation (apsb24-96)

CVE-2024-32957 | Live Composer Plugin up to 1.5.38 on WordPress authorization

CVE-2026-1648 | qrolic Performance Monitor Plugin up to 1.0.6 on WordPress REST API Endpoint curl_data url server-side request forgery