Home
MEDIUM: 6.5 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:HDefault status
unaffected
4.0.0 (custom) before 4.0.6
affected
3.3.0 (custom) before 3.3.16
affected
3.2.0 (custom) before 3.2.14
affected
2.9.0 (custom) before 2.9.14
affected
2.8.0 (custom) before 2.8.12
affected
Description
Spring Kafka's retry topic infrastructure did not sufficiently validate user-controlled header values before acting on them. A producer could send a record with a crafted retry_topic-attempts header to supply an out-of-range attempt count and cause the retry topic router to misidentify where the message was in the retry sequence. Affected versions: Spring for Apache Kafka 4.0.0 through 4.0.5; 3.3.0 through 3.3.15; 3.2.0 through 3.2.13; 2.9.0 through 2.9.13; 2.8.0 through 2.8.11.
Problem types
CWE-20: Improper Input Validation
Product status
4.0.0 (custom) before 4.0.6
3.3.0 (custom) before 3.3.16
3.2.0 (custom) before 3.2.14
2.9.0 (custom) before 2.9.14
2.8.0 (custom) before 2.8.12
References
spring.io/security/cve-2026-41727