Approved changes feed: RSS · Atom

cpe:2.3:a:aiven:journalpump:*:*:*:*:*:*:*:*

part: a version: * update: *

VendorAiven (55dae46f-23ce-5560-8065-cd68a0390f60)
ProductJournalpump (3ab7301c-7b77-56fa-b71d-64718fb9f987)
Edition*
Language*
Software edition*
Target software*
Target hardware*
Other*
NotesImported from purl2cpe mapping

PURL mappings

PURLSourceLast updated
pkg:github/aiven-open/journalpump purl2cpe 2026-06-01 10:18:08.282162

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2023-51390 vulnerable 2026-06-08 06:16:17.427555 Information Disclosure Vulnerability in Journalpump
MEDIUM (6.5)
journalpump is a daemon that takes log messages from journald and pumps them to a given output. A logging vulnerability was found in journalpump which logs out the configuration of a service integration in plaintext to the supplied logging pipeline, including credential information contained in the configuration if any. The problem has been patched in journalpump 2.5.0.
Published: 2023-12-20T23:27:10.958Z
Updated: 2024-08-02T22:32:09.162Z
Reference links
Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.