It was found that Red Hat's AMQ-Streams ships a version of OKHttp component with an information disclosure flaw via an exception triggered by a header containing an illegal value. An authenticated attacker could possibly use this flaw to access information outside of their regular permissions.
This issue has been addressed in the following products: Red Hat AMQ Streams 2.2.1 Via RHSA-2023:1241 https://access.redhat.com/errata/RHSA-2023:1241
This issue has been addressed in the following products: Red Hat AMQ Streams 2.4.0 Via RHSA-2023:3223 https://access.redhat.com/errata/RHSA-2023:3223