CVE-2023-52251

Published January 25th, 2024

View on NVD ↗

CVSS v3

8.8

HIGH

CVSS v2

N/A

Affected

PROJECT

Description

An issue discovered in provectus kafka-ui 0.4.0 through 0.7.1 allows remote attackers to execute arbitrary code via the q parameter of /api/clusters/local/topics/{topic}/messages.

BobTheShoplifter/CVE-2023-52251-POC

CVE-2023-52251 There is a Remote Code Execution vulnerability provectus/kafka-ui.

GitHub