CVE-2025-30677

Name of the Vulnerable Software and Affected Versions: Apache Pulsar IO versions prior to 3.0.11 Apache Pulsar IO versions prior to 3.3.6 Apache Pulsar IO versions prior to 4.0.4

Description: The issue affects Apache Pulsar IO's Apache Kafka connectors, where sensitive configuration properties are logged in plain text in application logs. This can lead to unintended exposure of credentials in log files, potentially allowing attackers with access to these logs to obtain Apache Kafka credentials. The impact is limited by the fact that an attacker would need access to the application logs to exploit this issue.

Recommendations: For versions 3.0.x, upgrade to at least version 3.0.11. For versions 3.3.x, upgrade to at least version 3.3.6. For versions 4.0.x, upgrade to at least version 4.0.4. For versions prior to those listed above, upgrade to the aforementioned patched versions or newer versions.