Lucene search
K

14 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2022-3562

Malicious code in bioql PyPI...

7.5CVSS7.7AI score0.08724EPSS
Exploits0References23
IBM Security Bulletins
IBM Security Bulletins
added 2025/04/29 1:54 a.m.70 views

Security Bulletin: Multiple security vulnerabilities have been identified in IBM® DB2® shipped with IBM PureData System for Operational Analytics

Summary IBM® DB2® is shipped as a component of IBM PureData System for Operational Analytics. Information about security vulnerabilities affecting IBM DB2 have been published in a security bulletin. Vulnerability Details CVEID:CVE-2017-12973 DESCRIPTION: Connect2id Nimbus JOSE+JWT could provide...

9.3CVSS10AI score0.87806EPSS
Exploits2Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2023/11/29 2:49 p.m.30 views

Security Bulletin: IBM Watson Discovery Cartridge for IBM Cloud Pak for Data affected by vulnerability in Apache ZooKeeper

Summary IBM Watson Discovery Cartridge for IBM Cloud Pak for Data contains a vulnerable version of Apache ZooKeeper. Vulnerability Details CVEID: CVE-2023-44981 DESCRIPTION: Apache ZooKeeper could allow a remote attacker to bypass security restrictions, caused by a flaw when SASL Quorum Peer...

9.1CVSS6.8AI score0.01713EPSS
Exploits0Affected Software1
Github Security Blog
Github Security Blog
added 2023/10/11 12:30 p.m.36 views

Authorization Bypass Through User-Controlled Key vulnerability in Apache ZooKeeper

Authorization Bypass Through User-Controlled Key vulnerability in Apache ZooKeeper. If SASL Quorum Peer authentication is enabled in ZooKeeper quorum.auth.enableSasl=true, the authorization is done by verifying that the instance part in SASL authentication ID is listed in zoo.cfg server list. The...

9.1CVSS9.2AI score0.01713EPSS
Exploits0References7Affected Software1
UbuntuCve
UbuntuCve
added 2023/10/11 12:15 p.m.41 views

CVE-2023-44981

Authorization Bypass Through User-Controlled Key vulnerability in Apache ZooKeeper. If SASL Quorum Peer authentication is enabled in ZooKeeper quorum.auth.enableSasl=true, the authorization is done by verifying that the instance part in SASL authentication ID is listed in zoo.cfg server list. The...

9.1CVSS6.9AI score0.01713EPSS
Exploits0References7
Prion
Prion
added 2023/10/11 12:15 p.m.29 views

Authorization

Authorization Bypass Through User-Controlled Key vulnerability in Apache ZooKeeper. If SASL Quorum Peer authentication is enabled in ZooKeeper quorum.auth.enableSasl=true, the authorization is done by verifying that the instance part in SASL authentication ID is listed in zoo.cfg server list. The...

6.4CVSS9.1AI score0.01713EPSS
Exploits0References4Affected Software2
SUSE CVE
SUSE CVE
added 2023/02/15 4:29 a.m.2 views

SUSE CVE-2018-8012

No authentication/authorization is enforced when a server attempts to join a quorum in Apache ZooKeeper before 3.4.10, and 3.5.0-alpha through 3.5.3-beta. As a result an arbitrary end point could join the cluster and begin propagating counterfeit changes to the leader...

7.5CVSS7.8AI score0.08724EPSS
Exploits0References3
OSV
OSV
added 2022/05/13 1:5 a.m.2 views

GHSA-CCQF-C5HQ-77MP Missing Authorization in Apache ZooKeeper

No authentication/authorization is enforced when a server attempts to join a quorum in Apache ZooKeeper before 3.4.10, and 3.5.0-alpha through 3.5.3-beta. As a result an arbitrary end point could join the cluster and begin propagating counterfeit changes to the leader...

7.5CVSS7.2AI score0.08724EPSS
Exploits0References13
OpenVAS
OpenVAS
added 2019/11/26 12:0 a.m.36 views

Apache ZooKeeper < 3.4.10, 3.5.0-alpha - 3.5.3-beta Quorum Peer Mutual Authentication Vulnerability

Apache ZooKeeper is prone to a Quorum Peer mutual authentication vulnerability. Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program...

7.5CVSS7.5AI score0.08724EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2018/05/23 4:21 a.m.20 views

CVE-2018-8012

No authentication/authorization is enforced when a server attempts to join a quorum in Apache ZooKeeper before 3.4.10, and 3.5.0-alpha through 3.5.3-beta. As a result an arbitrary end point could join the cluster and begin propagating counterfeit changes to the leader...

7.5CVSS2AI score0.08724EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2018/05/21 7:29 p.m.25 views

CVE-2018-8012

No authentication/authorization is enforced when a server attempts to join a quorum in Apache ZooKeeper before 3.4.10, and 3.5.0-alpha through 3.5.3-beta. As a result an arbitrary end point could join the cluster and begin propagating counterfeit changes to the leader...

7.5CVSS7.2AI score0.08724EPSS
Exploits0References7
NVD
NVD
added 2018/05/21 7:29 p.m.17 views

CVE-2018-8012

No authentication/authorization is enforced when a server attempts to join a quorum in Apache ZooKeeper before 3.4.10, and 3.5.0-alpha through 3.5.3-beta. As a result an arbitrary end point could join the cluster and begin propagating counterfeit changes to the leader...

7.5CVSS7.6AI score0.08724EPSS
Exploits0References12
OSV
OSV
added 2018/05/21 7:29 p.m.24 views

CVE-2018-8012

No authentication/authorization is enforced when a server attempts to join a quorum in Apache ZooKeeper before 3.4.10, and 3.5.0-alpha through 3.5.3-beta. As a result an arbitrary end point could join the cluster and begin propagating counterfeit changes to the leader...

7.5CVSS7.2AI score
Exploits0References12
Debian CVE
Debian CVE
added 2018/05/21 7:0 p.m.24 views

CVE-2018-8012

No authentication/authorization is enforced when a server attempts to join a quorum in Apache ZooKeeper before 3.4.10, and 3.5.0-alpha through 3.5.3-beta. As a result an arbitrary end point could join the cluster and begin propagating counterfeit changes to the leader...

7.5CVSS2AI score0.08724EPSS
Exploits0
Rows per page
Query Builder