CVE-2026-41115— Apache Kafka: Improper Authorization in CONSUMER_GROUP_DESCRIBE API
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2026-41115
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Apache Kafka: Improper Authorization in CONSUMER_GROUP_DESCRIBE API
Source: NVD (National Vulnerability Database)
Vulnerability Description
An improper authorization vulnerability has been identified in Apache Kafka. The implementation of the CONSUMER_GROUP_DESCRIBE (69) API validates the DESCRIBE operation on the GROUP resource instead of the READ operation that documented in the official kafka documentation and the KIP-848. This discrepancy can result in misconfigured Access Control Lists (ACLs) and unintended security postures, like granting READ permission to users who should not be able to join/sync groups, or allowing users without READ permission (but with DESCRIBE permission) to access sensitive group metadata. The correct permission for CONSUMER_GROUP_DESCRIBE API is DESCRIBE GROUP so the current implementation is correct. However, the kafka documentation as well as the KIP-848 will be updated to reflect the correct permission. We advise the Kafka users to review existing group ACLs to ensure the principle of least privilege.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
授权机制不恰当
Source: NVD (National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| Apache Software Foundation | Apache Kafka | 4.0.0 ~ 4.3.0 | - |
II. Public POCs for CVE-2026-41115
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2026-41115
请登录查看更多情报信息。
IV. Related Vulnerabilities
Same product: Apache Kafka
- CVE-2026-33557
Apache Kafka: Missing JWT token validation in OAUTHBEARER au - CVE-2026-33558
Apache Kafka, Apache Kafka Clients: Information Exposure Thr - CVE-2025-27819
Apache Kafka: Possible RCE/Denial of service attack via SASL - CVE-2025-27818
Apache Kafka: Possible RCE attack via SASL JAAS LdapLoginMod - CVE-2024-56128
Apache Kafka: SCRAM authentication vulnerable to replay atta
Same vendor: Apache Software Foundation
- CVE-2026-46718
Apache Calcite: A user-controled model can load arbitrary cl - CVE-2026-49328
Apache Fesod (Incubating): Improper validation of user-suppl - CVE-2026-48827
Apache MINA SSHD: Path traversal in org.apache.sshd:sshd-git - CVE-2026-44825
Apache Solr: Enabling BasicAuth using bin/solr CLI configure - CVE-2026-49361
Apache Fluss Netty Frame Decoder Memory Exhaustion Vulnerabi
Same weakness: CWE-285
- CVE-2026-10294
PackageKit API pk-transaction.c g_file_test improper authori - CVE-2026-10285
DevaslanPHP project-management Ticket KanbanScrumHelper.php - CVE-2026-10284
DevaslanPHP project-management Livewire ViewTicket.php doDel - CVE-2026-10282
Bottelet DaybydayCRM DocumentsController.php view improper a - CVE-2026-0072
Android InputMethodManagerService权限检查缺失致提权
V. Comments for CVE-2026-41115
No comments yet