CVE-2026-10143

HIGH EPSS 30.7%
Published Jun 10, 20263w ago · Modified Jun 17, 20262w ago
8.7 CVSS 4.0
High
Find Similar
Published Jun 10, 2026 3w ago
Last Modified Jun 17, 2026 2w ago

Description

kafka-python prior to 2.3.2 contains a denial-of-service vulnerability in SCRAM authentication handling that allows a malicious or machine-in-the-middle broker to freeze the client event loop by supplying an excessively large iteration count. In scram.py, ScramClient.process_server_first_message() passes the broker-controlled SCRAM iteration count directly to hashlib.pbkdf2_hmac() without validation, blocking producer sends, consumer polls, admin operations, and heartbeats, which can cause consumer group eviction and repeated reconnect failures.

CVSS Details

Base Score
8.7
Exploitability
Impact
Vector string
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Attack Vector Network
Attack Complexity Low
Privileges Required None
User Interaction None
Scope X

Threat Intelligence

EPSS Exploit Probability
30.7% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Weaknesses 1

CWE-400 Uncontrolled Resource Consumption Resource Mgmt

Affected Products 1

VendorProductVersionRange
dpkpkafka-python* <2.3.2

References 4

  • github.com https://github.com/dpkp/kafka-python/commit/6e4831444f972d169cdd11f5c8d50333cea3f19b
    Patch
  • github.com https://github.com/dpkp/kafka-python/pull/3019
    Issue TrackingPatch
  • github.com https://github.com/dpkp/kafka-python/pull/3026
    Issue TrackingPatch
  • vulncheck.com https://www.vulncheck.com/advisories/kafka-python-prior-to-dos-via-scram-iteration-count-in-scram-py
    PatchThird Party Advisory

Remediation

  • github.com https://github.com/dpkp/kafka-python/commit/6e4831444f972d169cdd11f5c8d50333cea3f19b
    Patch
  • github.com https://github.com/dpkp/kafka-python/pull/3019
    Issue TrackingPatch
  • github.com https://github.com/dpkp/kafka-python/pull/3026
    Issue TrackingPatch
  • vulncheck.com https://www.vulncheck.com/advisories/kafka-python-prior-to-dos-via-scram-iteration-count-in-scram-py
    PatchThird Party Advisory