Intrusion Prevention

Apache.Kafka.CVE-2025-27817.SSRF

Description

This indicates an attack attempt to exploit a Server-Side Request Forgery Vulnerability in Apache Kafka.
The vulnerability is due to improper sanitation of HTTP requests in the application. The vulnerability may allow an attacker to make arbitrary requests via the injection of arbitrary URLs to probe intranet web services that they normally do not have access to.

Affected Products

Apache Kafka prior to 3.9.1
Apache Kafka prior to 4.0.0

Impact

Privilege Escalation: Remote attackers can leverage their privileges on vulnerable systems.

Recommended Actions

Apply the most recent upgrade or patch from the vendor.
https://kafka.apache.org

Coverage

IPS (Regular DB)
IPS (Extended DB)

Version Updates

Date	Version	Status	Detail
2025-08-11	33.061	Modified	Default_action:pass:drop
2025-07-28	33.053	New

ID	58494
Created	Jul 17, 2025
Updated	Sep 10, 2025
CVE ID
Risk
Exploit Prediction Score	13.42%
Default Action	drop
Active
Affected OS	All
Affected App	Apache
Profile Type	Information Disclosure

Protect

Detect

Respond

Recover

Identify

Network Security

Cloud & Application Security

Endpoint Security

Security Operations

Intrusion Prevention

Apache.Kafka.CVE-2025-27817.SSRF

Description

Affected Products

Impact

Recommended Actions

Coverage

Version Updates

Research Center

Services

Protect

Detect

Respond

Recover

Identify

Network Security

Cloud & Application Security

Endpoint Security

Security Operations

Threat Intelligence Center

Support Center

Resource Center

About

Intrusion Prevention

Apache.Kafka.CVE-2025-27817.SSRF

Description

Affected Products

Impact

Recommended Actions

Coverage

Version Updates

Threat Intelligence
Center