CVE-2026-10143— kafka-python prior to 2.3.2 DoS via SCRAM Iteration Count in scram.py
Possible ATT&CK Techniques 1AI
T1499 · Endpoint Denial of ServiceAffected Version Matrix 1
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Dana Powers | kafka-python | < 2.3.2 | affected |
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2026-10143
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
kafka-python prior to 2.3.2 DoS via SCRAM Iteration Count in scram.py
Source: NVD (National Vulnerability Database)
Vulnerability Description
kafka-python prior to 2.3.2 contains a denial-of-service vulnerability in SCRAM authentication handling that allows a malicious or machine-in-the-middle broker to freeze the client event loop by supplying an excessively large iteration count. In scram.py, ScramClient.process_server_first_message() passes the broker-controlled SCRAM iteration count directly to hashlib.pbkdf2_hmac() without validation, blocking producer sends, consumer polls, admin operations, and heartbeats, which can cause consumer group eviction and repeated reconnect failures.
Source: NVD (National Vulnerability Database)
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Source: NVD (National Vulnerability Database)
Vulnerability Type
未加控制的资源消耗(资源穷尽)
Source: NVD (National Vulnerability Database)
Vulnerability Title
kafka-python 资源管理错误漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
kafka-python是Dana Powers个人开发者的一个纯Python编写的分布式流处理引擎客户端库。 kafka-python 2.3.2之前版本存在资源管理错误漏洞,该漏洞源于SCRAM认证处理中未验证迭代次数,可能导致恶意代理冻结客户端事件循环。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| Dana Powers | kafka-python | 0 ~ 2.3.2 | - |
II. Public POCs for CVE-2026-10143
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
Qwen3.6-35B-A3B · 10373 chars
Pro+ exclusive includes:
Vulnerability reproduction recording (real sandbox build + trigger, exclusive)
In-depth vulnerability mechanism
Trigger conditions & impact
Full executable POC code
Exploit chain & mitigation
POC zip download
100+ AI POC generations per month
III. Intelligence Information for CVE-2026-10143
请登录查看更多情报信息。
Patches & Fixes for CVE-2026-10143 (3)
Vendor Advisories for CVE-2026-10143 (1)
IV. Related Vulnerabilities
Same weakness: CWE-400
- CVE-2026-48779
ws: Memory exhaustion DoS from tiny fragments and data chunk - CVE-2026-41708
Spring Cloud Sleuth instrumentation of Spring TX DoS vulnera - CVE-2026-5079
multer vulnerable to Denial of Service via deeply nested fie - CVE-2026-50011
Netty has unbounded pre-allocation in RedisArrayAggregator f - CVE-2026-48043
netty-codec-http2: ByteBuf Reference-Count Leak in Delegatin
V. Comments for CVE-2026-10143
No comments yet