Vulnerabilities > Vmware > Spring FOR Apache Kafka > 2.9.1
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-08-24 | CVE-2023-34040 | Deserialization of Untrusted Data vulnerability in VMWare Spring for Apache Kafka In Spring for Apache Kafka 3.0.9 and earlier and versions 2.9.10 and earlier, a possible deserialization attack vector existed, but only if unusual configuration was applied. | 7.8 |