CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

27 matches found

EUVD•added 2025/10/03 8:7 p.m.•3 views

EUVD-2022-0020

Malicious code in bioql PyPI...

5.9CVSS5.8AI score0.00798EPSS

Exploits0References5

Tenable Nessus•added 2025/09/10 12:0 a.m.•5 views

Linux Distros Unpatched Vulnerability : CVE-2022-32531

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The Apache Bookkeeper Java Client before 4.14.6 and also 4.15.0 does not close the connection to the bookkeeper server when TLS hostname verification fails. Thi...

5.9CVSS5.9AI score0.00798EPSS

Exploits0References2

RedhatCVE•added 2025/05/23 12:41 a.m.•8 views

CVE-2022-32531

The Apache Bookkeeper Java Client before 4.14.6 and also 4.15.0 does not close the connection to the bookkeeper server when TLS hostname verification fails. This leaves the bookkeeper client vulnerable to a man in the middle attack. The problem affects BookKeeper client prior to versions 4.14.6 a...

5.9CVSS6.6AI score0.00798EPSS

Exploits0References1

vulnersOsv•added 2024/05/14 3:32 p.m.•4 views

co.elastic.apm:apm-agent-attach-cli (>=1.26.0 <=1.49.0), com.adobe.documentservices:pdfservices-sdk (>=2.2.2 <=3.5.1) +164 more potentially affected by CVE-2024-29857 via org.bouncycastle:bc-fips (>=1.0.1 <=1.0.2.4)

org.bouncycastle:bc-fips MAVEN version =1.0.1, =1.26.0, =2.2.2, =4.16.8.0, =4.16.8.0, =4.16.8.0, =4.16.8.0, =4.16.8.0, =4.16.8.0, =4.16.8.0, =4.16.8.0, =4.16.8.0, =4.16.8.0, =4.16.8.0, =4.16.8.0, =4.16.8.0, =4.17.4.0 and more Source cves: CVE-2024-29857 Source advisory:...

7.5CVSS6.7AI score0.00252EPSS

Exploits0

Github Security Blog•added 2022/12/15 9:30 p.m.•29 views

Apache Bookkeeper vulnerable to Improper Certificate Validation

5.9CVSS5.7AI score0.00798EPSS

Exploits0References4Affected Software1

vulnersOsv•added 2022/12/15 9:30 p.m.•2 views

co.macrometa.c8streams.handlers:kop (>=2.7.1.5 <=2.8.1.6), com.clever-cloud:biscuit-pulsar (>=1.2.1 <=3.4.5) +138 more potentially affected by CVE-2022-32531 via org.apache.bookkeeper:bookkeeper-common (>=4.10.0 <=4.14.5)

org.apache.bookkeeper:bookkeeper-common MAVEN version =4.10.0, =2.7.1.5, =1.2.1, =3.0.30.RELEASE, =3.0.34.RELEASE, =3.1.7, =0.0.1, =0.9.0, =0.9.0, =0.9.0, =0.9.0, =0.9.0, =2.8.0.14, =2.9.0.0-rc-6 and more Source cves: CVE-2022-32531 Source advisory: OSV:GHSA-GXQ5-79M2-GVVQ...

5.9CVSS6.2AI score0.00798EPSS

Exploits0

OSV•added 2022/12/15 9:30 p.m.•2 views

GHSA-GXQ5-79M2-GVVQ Apache Bookkeeper vulnerable to Improper Certificate Validation

5.9CVSS6.2AI score0.00798EPSS

Exploits0References4

OSV•added 2022/12/15 7:15 p.m.•11 views

CVE-2022-32531

5.9CVSS5.5AI score

Exploits0References1

NVD•added 2022/12/15 7:15 p.m.•14 views

CVE-2022-32531

5.9CVSS0.00798EPSS

Exploits0References1

PyPA•added 2022/12/15 7:15 p.m.•5 views

PYSEC-2022-43060

The Apache Bookkeeper Java Client before 4.14.6 and also 4.15.0 does not close the connection to the bookkeeper server when TLS hostname verification fails. This leavesthe bookkeeper client vulnerable to a man in the middle attack.The problem affects BookKeeper client prior to versions 4.14.6 and...

5.9CVSS6.9AI score0.00798EPSS

Exploits0References2Affected Software1

OSV•added 2022/12/15 7:15 p.m.•12 views

PYSEC-2022-43060

5.9CVSS5.5AI score0.00798EPSS

Exploits0References1

Prion•added 2022/12/15 7:15 p.m.•16 views

Design/Logic Flaw

2.6CVSS5.5AI score0.00798EPSS

Exploits0References1Affected Software1

UbuntuCve•added 2022/12/15 7:15 p.m.•26 views

CVE-2022-32531

5.9CVSS6.2AI score0.00798EPSS

Exploits0References2

OSV•added 2022/12/15 7:15 p.m.•1 views

UBUNTU-CVE-2022-32531

5.9CVSS6.3AI score0.00798EPSS

Exploits0References3

Cvelist•added 2022/12/15 10:17 a.m.•17 views

CVE-2022-32531 Apache BookKeeper: Java Client Uses Connection to Host that Failed Hostname Verification

5.8AI score0.00798EPSS

Exploits0References1

Debian CVE•added 2022/12/15 10:17 a.m.•26 views

CVE-2022-32531

Removed by vendor...

5.9CVSS5.8AI score0.00798EPSS

Exploits0

Vulnrichment•added 2022/12/15 10:17 a.m.•4 views

CVE-2022-32531 Apache BookKeeper: Java Client Uses Connection to Host that Failed Hostname Verification

5.6AI score0.00798EPSS

Exploits0References1

CVE•added 2022/12/15 10:17 a.m.•88 views

CVE-2022-32531

The CVE-2022-32531 issue affects the Apache Bookkeeper Java Client. Affected software: BookKeeper Java Client prior to versions 4.14.6 and 4.15.0. Root cause: the client does not close the connection to the bookkeeper server when TLS hostname verification fails, enabling a potential MITM conditio...

5.9CVSS5.5AI score0.00798EPSS

Exploits0References1Affected Software1

Positive Technologies•added 2022/12/15 12:0 a.m.•1 views

PT-2022-21352 · Apache · Apache Bookkeeper Java Client

Name of the Vulnerable Software and Affected Versions: Apache Bookkeeper Java Client versions prior to 4.14.6 and 4.15.1 Description: The Apache Bookkeeper Java Client does not close the connection to the bookkeeper server when TLS hostname verification fails, leaving it vulnerable to a...

5.9CVSS5.5AI score0.00798EPSS

Exploits0References10

CNNVD•added 2022/12/15 12:0 a.m.•5 views

Apache BookKeeper 信任管理问题漏洞

Apache BookKeeper is a scalable, fault-tolerant, and low-latency storage service optimized for real-time workloads from the Apache Foundation USA. A trust management issue vulnerability exists in the Apache Bookkeeper Java Client versions prior to 4.14.6 and prior to 4.15.0, which stems from a...

5.9CVSS5.9AI score0.00798EPSS

Exploits0References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by