Approved changes feed: RSS · Atom

cpe:2.3:a:lightbend:alpakka_kafka:*:*:*:*:*:*:*:*

part: a version: * update: *

VendorLightbend (eeba8d5c-f0b3-5068-b0af-843cc375ab14)
ProductAlpakka Kafka (b017a293-acd5-5cef-bb81-34e8ad43f12c)
Edition*
Language*
Software edition*
Target software*
Target hardware*
Other*
NotesImported from purl2cpe mapping

PURL mappings

PURLSourceLast updated
pkg:github/akka/alpakka-kafka purl2cpe 2026-06-01 10:16:13.062548
pkg:golang/github.com/akka/alpakka-kafka purl2cpe 2026-06-01 10:16:13.062550

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2023-29471 vulnerable 2026-06-08 06:02:40.302138 Details available
Lightbend Alpakka Kafka before 5.0.0 logs its configuration as debug information, and thus log files may contain credentials (if plain cleartext login is configured). This occurs in akka.kafka.internal.KafkaConsumerActor.
Published: 2023-04-27T00:00:00.000Z
Updated: 2025-01-31T18:39:55.602Z
Reference links
Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.