Lucene search
K

703 matches found

Chainguard
Chainguard
added 5 days ago6 views

CVE-2026-10532 vulnerabilities

Vulnerabilities for packages: zookeeper-fips, cassandra, cassandra-reaper, sonar-scanner-cli, apache-nifi, dependency-track-apiserver, management-api-for-apache-cassandra-4.0, nextflow, cassandra-fips, nacos, management-api-for-apache-cassandra-5.0, management-api-for-apache-cassandra-4.1,...

6.3CVSS6.1AI score0.00342EPSS
Exploits0
Chainguard
Chainguard
added 5 days ago13 views

GHSA-JHQ6-GFMJ-V8FX vulnerabilities

Vulnerabilities for packages: zookeeper-fips, cassandra, cassandra-reaper, sonar-scanner-cli, apache-nifi, dependency-track-apiserver, management-api-for-apache-cassandra-4.0, nextflow, cassandra-fips, nacos, management-api-for-apache-cassandra-5.0, management-api-for-apache-cassandra-4.1,...

6.1AI score
Exploits0
Chainguard
Chainguard
added 2026/07/03 2:17 p.m.15 views

CVE-2026-9828 vulnerabilities

Vulnerabilities for packages: zookeeper-fips, sonarqube, cassandra, cassandra-reaper, ontop-fips, sonar-scanner-cli, management-api-for-apache-cassandra-4.0, nextflow, cassandra-fips, nacos, management-api-for-apache-cassandra-5.0, management-api-for-apache-cassandra-4.1, knative-kafka-broker-fip...

6.3CVSS6.1AI score0.0037EPSS
Exploits0
Chainguard
Chainguard
added 2026/07/03 2:17 p.m.14 views

GHSA-P47F-322F-WHFH vulnerabilities

Vulnerabilities for packages: zookeeper-fips, sonarqube, cassandra, cassandra-reaper, ontop-fips, sonar-scanner-cli, management-api-for-apache-cassandra-4.0, nextflow, cassandra-fips, nacos, management-api-for-apache-cassandra-5.0, management-api-for-apache-cassandra-4.1, knative-kafka-broker-fip...

6.1AI score
Exploits0
RedHat Linux
RedHat Linux
added 2026/07/02 12:3 a.m.7 views

Apache ZooKeeper: Apache ZooKeeper: Impersonation of servers or clients via reverse DNS spoofing

A flaw was found in Apache ZooKeeper. The ZKTrustManager component's hostname verification process can fall back to reverse DNS PTR lookup when IP Subject Alternative Name SAN validation fails. This vulnerability allows an attacker who can control or spoof PTR records to impersonate ZooKeeper...

7.4CVSS7AI score0.00633EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2026/07/02 12:3 a.m.7 views

Apache ZooKeeper: Apache ZooKeeper: Information disclosure via improper handling of configuration values

A flaw was found in Apache ZooKeeper. Improper handling of configuration values in ZKConfig allows an attacker to expose sensitive information. This occurs when sensitive client configuration values are logged at an INFO level in the client's logfile. This vulnerability can lead to information...

7.5CVSS7AI score0.01177EPSS
Exploits0References5
Chainguard
Chainguard
added 2026/06/26 2:16 a.m.9 views

GHSA-47QP-HQVX-6R3F vulnerabilities

Vulnerabilities for packages: zookeeper-fips, spark-fips, apache-nifi, druid, spark-kubernetes-operator, hadoop-client-modules, apache-hop, kafka-fips, hadoop-fips, spark, kafka, apache-hop-fips, tez, apache-camel-karavan-devmode, zookeeper, confluent-kafka, apache-pulsar, pinot-fips,...

6.1AI score
Exploits0
Chainguard
Chainguard
added 2026/06/26 2:16 a.m.9 views

GHSA-2R2C-CX56-8933 vulnerabilities

Vulnerabilities for packages: zookeeper-fips, spark-fips, apache-nifi, druid, spark-kubernetes-operator, hadoop-client-modules, apache-hop, kafka-fips, hadoop-fips, spark, kafka, apache-hop-fips, tez, apache-camel-karavan-devmode, zookeeper, confluent-kafka, apache-pulsar, pinot-fips,...

6.1AI score
Exploits0
IBM Security Bulletins
IBM Security Bulletins
added 2026/06/24 9:38 p.m.3 views

Security Bulletin: IBM InfoSphere Information Server is affected by multiple vulnerabilities in Apache ZooKeeper

Summary Multiple vulnerabilities in Apache ZooKeeper that is used by InfoSphere Information Server were addressed. Vulnerability Details CVEID:CVE-2026-24281 DESCRIPTION: Hostname verification in Apache ZooKeeper ZKTrustManager falls back to reverse DNS PTR when IP SAN validation fails, allowing...

7.5CVSS7AI score0.01177EPSS
Exploits0Affected Software1
NVD
NVD
added 2026/06/22 3:16 a.m.11 views

CVE-2026-11746

A vulnerability has been identified in centraldogma-server versions prior to 0.84.0, where enabling ZooKeeper replication without setting replication.secret causes the server to silently fall back to a hard-coded, publicly known secret. This default credential authenticates the embedded ZooKeeper...

9.4CVSS0.00145EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/06/22 2:35 a.m.37 views

CVE-2026-11746

A vulnerability has been identified in centraldogma-server versions prior to 0.84.0, where enabling ZooKeeper replication without setting replication.secret causes the server to silently fall back to a hard-coded, publicly known secret. This default credential authenticates the embedded ZooKeeper...

9.4CVSS0.00145EPSS
Exploits0References1
CVE
CVE
added 2026/06/22 2:35 a.m.26 views

CVE-2026-11746

CVE-2026-11746 affects centraldogma-server versions prior to 0.84.0. If ZooKeeper replication is enabled without setting replication.secret, the server falls back to a hard-coded, publicly known secret that authenticates the embedded ZooKeeper ensemble. This allows an attacker with network access...

9.4CVSS6.1AI score0.00145EPSS
Exploits0References1
EUVD
EUVD
added 2026/06/22 2:35 a.m.7 views

EUVD-2026-38207

A vulnerability has been identified in centraldogma-server versions prior to 0.84.0, where enabling ZooKeeper replication without setting replication.secret causes the server to silently fall back to a hard-coded, publicly known secret. This default credential authenticates the embedded ZooKeeper...

9.4CVSS6.1AI score0.00145EPSS
Exploits0References1
OSV
OSV
added 2026/06/17 3:49 p.m.5 views

ROOT-APP-MAVEN-CVE-2026-24308 CVE-2026-24308 in io.root.org.apache.zookeeper:zookeeper - Patched by Root

Root has patched CVE-2026-24308 in the io.root.org.apache.zookeeper:zookeeper package for Root:Maven. Multiple fixed versions available...

7.5CVSS6.7AI score0.01177EPSS
Exploits0
OSV
OSV
added 2026/06/17 3:49 p.m.4 views

ROOT-APP-MAVEN-CVE-2025-58457 CVE-2025-58457 in io.root.org.apache.zookeeper:zookeeper - Patched by Root

Root has patched CVE-2025-58457 in the io.root.org.apache.zookeeper:zookeeper package for Root:Maven. Multiple fixed versions available...

4.3CVSS7.1AI score0.00294EPSS
Exploits0
OSV
OSV
added 2026/06/17 3:49 p.m.5 views

ROOT-APP-MAVEN-CVE-2024-51504 CVE-2024-51504 in io.root.org.apache.zookeeper:zookeeper - Patched by Root

Root has patched CVE-2024-51504 in the io.root.org.apache.zookeeper:zookeeper package for Root:Maven. Multiple fixed versions available...

9.1CVSS7.1AI score0.00924EPSS
Exploits0
OSV
OSV
added 2026/06/17 3:49 p.m.7 views

ROOT-APP-MAVEN-CVE-2024-23944 CVE-2024-23944 in io.root.org.apache.zookeeper:zookeeper - Patched by Root

Root has patched CVE-2024-23944 in the io.root.org.apache.zookeeper:zookeeper package for Root:Maven. Multiple fixed versions available...

5.3CVSS7.9AI score0.00246EPSS
Exploits0
OSV
OSV
added 2026/06/17 3:49 p.m.10 views

ROOT-APP-MAVEN-CVE-2026-24281 CVE-2026-24281 in io.root.org.apache.zookeeper:zookeeper - Patched by Root

Root has patched CVE-2026-24281 in the io.root.org.apache.zookeeper:zookeeper package for Root:Maven. Multiple fixed versions available...

7.4CVSS5.8AI score0.00633EPSS
Exploits0
OSV
OSV
added 2026/06/11 12:41 a.m.18 views

CLEANSTART-2026-AO11810 Netty is an asynchronous, event-driven network application framework

Multiple security vulnerabilities affect the apache-zookeeper package. Netty is an asynchronous, event-driven network application framework. See references for individual vulnerability details...

9.8CVSS6.9AI score0.01109EPSS
Exploits3References18
OSV
OSV
added 2026/06/11 12:40 a.m.9 views

CLEANSTART-2026-HW72470 Security fixes for ghsa-72hv-8253-57qq applied in versions: 3.6.4-r4

Security vulnerability affects the apache-zookeeper package. This issue is resolved in later releases. See references for vulnerability details...

5.5AI score
Exploits0References2
Rows per page
Query Builder