CVE-2024-28098 | Apache Pulsar up to 2.10.5/2.11.3/3.0.2/3.1.2/3.2.0 Topic-Level Policy authorization

Posted by Angelo Barbosa | Mar 12, 2024 | CVE

A vulnerability was found in Apache Pulsar up to 2.10.5/2.11.3/3.0.2/3.1.2/3.2.0. It has been declared as critical. This vulnerability affects unknown code of the component Topic-Level Policy Handler. The manipulation leads to incorrect authorization.

This vulnerability was named CVE-2024-28098. The attack can be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-28098 | Apache Pulsar up to 2.10.5/2.11.3/3.0.2/3.1.2/3.2.0 Topic-Level Policy authorization

Related Posts

CVE-2024-8362 | Google Chrome up to 128.0.6613.113 WebAudio use after free

CVE-2022-48705 | Linux Kernel up to 5.19.8 mt7921e napi_diable denial of service (f7f3001723e3/fa3fbe640378)

CVE-2023-1000 | cyanomiko dcnnt-py up to 0.9.0 Notification notifications.py main command injection (ID 23)

CVE-2024-23729 | ColorOS Internet Browser 45.10.3.4.1 on Android com.android.browser.RealBrowserActivity cross site scripting