Rewterz Threat Alert – APT Group Gamaredon Targeting Ukraine With A New InfoStealer – Active IOCs
September 21, 2022Rewterz Threat Advisory – Multiple Mozilla Firefox Vulnerabilities
September 21, 2022Rewterz Threat Alert – APT Group Gamaredon Targeting Ukraine With A New InfoStealer – Active IOCs
September 21, 2022Rewterz Threat Advisory – Multiple Mozilla Firefox Vulnerabilities
September 21, 2022Severity
High
Analysis Summary
CVE-2022-34917
Apache Kafka is vulnerable to a denial of service, caused by improper input validation. By sending a specially-crafted request, a remote attacker could exploit this vulnerability to allocate large amounts of memory on brokers, and results in a denial of service condition.
Impact
- Denial of Service
Indicators Of Compromise
CVE
- CVE-2022-34917
Affected Vendors
- Apache
Affected Products
- Apache Kafka 2.8.0
- Apache Kafka 3.0.0
- Apache Kafka 3.1.0
- Apache Kafka 3.2.0
Remediation
Upgrade to the latest version of Apache Kafka, available from the Apache Website.