JsonKafkaHeaderMapper

CVEs (1)

CVE	Vendor / Product	Sev	Risk	CVSS	EPSS	KEV	Published	Description
CVE-2026-41731	Apache Kafka JsonKafkaHeaderMapper	Hig	0.53	8.1	—		Jun 10, 2026	JsonKafkaHeaderMapper and the deprecated DefaultKafkaHeaderMapper matched type headers against trusted packages using a prefix check, meaning that trusting any package implicitly trusted all of its subpackages. Combined with Jackson's default bean deserialization, a producer…

CVE-2026-41731HigJun 10, 2026
Apache Kafka
JsonKafkaHeaderMapper
risk 0.53cvss 8.1epss —
JsonKafkaHeaderMapper and the deprecated DefaultKafkaHeaderMapper matched type headers against trusted packages using a prefix check, meaning that trusting any package implicitly trusted all of its subpackages. Combined with Jackson's default bean deserialization, a producer…