CVE-2026-27133
中文标题:
(暂无数据)
英文标题:
Strimzi All CAs from CA chain will be trusted in Kafka Connect and Kafka MirrorMaker 2 target clusters
漏洞描述
中文描述:
(暂无数据)
英文描述:
Strimzi provides a way to run an Apache Kafka cluster on Kubernetes or OpenShift in various deployment configurations. From 0.47.0 to before 0.50.1, when a chain consisting of multiple CA (Certificate Authority) certificates is used in the trusted certificates configuration of a Kafka Connect operand or of the target cluster in the Kafka MirrorMaker 2 operand, all of the certificates that are part of the CA chain will be trusted individually when connecting to the Apache Kafka cluster. Due to this error, the affected operand (Kafka Connect or Kafka MirrorMaker 2) might accept connections to Kafka brokers using server certificates signed by one of the other CAs in the CA chain and not just by the last CA in the chain. This issue is fixed in Strimzi 0.50.1.
CWE类型:
标签:
受影响产品
| 厂商 | 产品 | 版本 | 版本范围 | 平台 | CPE |
|---|---|---|---|---|---|
| strimzi | strimzi-kafka-operator | >= 0.47.0, < 0.51.1 | - | - |
cpe:2.3:a:strimzi:strimzi-kafka-operator:>=_0.47.0,_<_0.51.1:*:*:*:*:*:*:*
|
| linuxfoundation | strimzi_kafka_operator | * | - | - |
cpe:2.3:a:linuxfoundation:strimzi_kafka_operator:*:*:*:*:*:*:*:*
|
| linuxfoundation | strimzi | * | - | - |
cpe:2.3:a:linuxfoundation:strimzi:*:*:*:*:*:*:*:*
|
解决方案
中文解决方案:
英文解决方案:
临时解决方案:
CVSS评分详情
3.1 (cna)
MEDIUMCVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:N
时间信息
利用信息
数据源详情
| 数据源 | 记录ID | 版本 | 提取时间 |
|---|---|---|---|
| CVE | cve_CVE-2026-27133 |
2026-02-21 03:19:36 | 2026-02-20 22:00:02 |
| NVD | nvd_CVE-2026-27133 |
2026-02-21 02:00:05 | 2026-02-20 22:00:05 |
版本与语言
安全公告
变更历史
查看详细变更
- affected_products_count: 2 -> 3
查看详细变更
- affected_products_count: 1 -> 2
查看详细变更
- data_sources: ['cve'] -> ['cve', 'nvd']