Vulnerabilities in schema registry

Srinivas_Ganta · 11 April 2023 13:33

Hi,
I am working on schema registry vulnerabilities. There is a list of Vulnerabilities we found. we are unable to find in which schema registry version, the below vulnerabilities are going to be fixed.
CVE-2020-36518
CVE-2022-25647
CVE-2022-2048
CVE-2022-1471
CVE-2022-3509
CVE-2022-3510

We checked the last released version of security release notes with version 7.3.1 & 7.3.2 also. There is no one above vulnerabilities are going to be fixed in those versions.

Can you please tell us, In which Schema registry version the above Vulnerabilities will be fixed?

mmuehlbeyer · 11 April 2023 14:37

hey @Srinivas_Ganta

did you check

best,
michael

Topic		Replies	Views
Vulnerabilities related to schema registry in 7.2.1 & 7.3.0 Schema Registry	2	2769	24 January 2023
Vulnerabilities in latest docker image of confluentinc/cp-schema-registry:7.2.0 Schema Registry	0	3063	20 July 2022
Security vulnerability in confluent-7.3.0 ksqlDB	2	3290	10 December 2022
Schema Registry force delete and recreation updates the version Schema Registry	2	3751	22 July 2021
Resolving CVE-2022-48566 and CVE-2023-40217 Kafka Connect	1	1248	29 October 2023

Vulnerabilities in schema registry

Related topics