High severity8.2NVD Advisory· Published Dec 12, 2023· Updated Jun 17, 2026
CVE-2023-36648
CVE-2023-36648
Description
Missing authentication in the internal data streaming system in ProLion CryptoSpike 3.0.15P2 allows remote unauthenticated users to read potentially sensitive information and deny service to users by directly reading and writing data in Apache Kafka (as consumer and producer).
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- ProLion/CryptoSpikedescription
- Range: =3.0.15P2
Patches
Vulnerability mechanics
References
1- www.cvcn.gov.it/cvcn/cve/CVE-2023-36648nvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.