Missing Authorization Checks in Redpanda Transactions API

Missing Authorization Checks in Redpanda Transactions API

CVE-2023-50976 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Redpanda before 23.1.21 and 23.2.x before 23.2.18 has missing authorization checks in the Transactions API.

Learn more about our Api Penetration Testing.