Lucene search
K

15 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2025/04/29 1:54 a.m.71 views

Security Bulletin: Multiple security vulnerabilities have been identified in IBM® DB2® shipped with IBM PureData System for Operational Analytics

Summary IBM® DB2® is shipped as a component of IBM PureData System for Operational Analytics. Information about security vulnerabilities affecting IBM DB2 have been published in a security bulletin. Vulnerability Details CVEID:CVE-2017-12973 DESCRIPTION: Connect2id Nimbus JOSE+JWT could provide...

9.3CVSS10AI score0.87806EPSS
Exploits2Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2024/10/08 6:3 p.m.37 views

Security Bulletin: IBM Security Guardium is affected by multiple vulnerabilities (CVE-2017-5637, CVE-2019-0201, CVE-2018-8012, CVE-2023-44981)

Summary IBM Security Guardium uses Apache ZooKeeper as a component. This component has multiple vulnerabilities which might affect the product. These vulnerabilities have been addressed in an update. Vulnerability Details CVEID:CVE-2017-5637 DESCRIPTION: Apache Zookeeper is vulnerable to a denial...

9.1CVSS8AI score0.73654EPSS
Exploits0Affected Software1
vulnersOsv
vulnersOsv
added 2022/05/13 1:5 a.m.4 views

cn.acooly:acooly-auth-wechat-authenticator (=5.2.1), cn.org.thinkcloud:think-cloud-starter-id (=2.0.1.RELEASE) +467 more potentially affected by CVE-2018-8012 via org.apache.zookeeper:zookeeper (>=3.5.0-alpha <=3.5.3-beta)

org.apache.zookeeper:zookeeper MAVEN version =3.5.0-alpha, =3.2.0, =3.0.5, =3.0.5, =0.85, =3.2.0, =3.2.0, =3.3.0-RELEASE, =0.2.2, =0.1.2, =0.2.0, =0.2.1 and more Source cves: CVE-2018-8012 Source advisory: OSV:GHSA-CCQF-C5HQ-77MP...

7.5CVSS7.1AI score0.08724EPSS
Exploits0
IBM Security Bulletins
IBM Security Bulletins
added 2021/09/24 4:54 p.m.45 views

Security Bulletin: IBM Planning Analytics Workspace is affected by security vulnerabilities

Summary The Planning Analytics Workspace component of IBM Planning Analytics is affected by vulnerabilities These have been addressed in IBM Planning Analytics Local v2.0 - Planning Analytics Workspace Release 68. Vulnerability Details CVEID: CVE-2019-10086 DESCRIPTION: Apache Commons Beanutils...

9.8CVSS9.6AI score0.93143EPSS
Exploits23Affected Software1
OpenVAS
OpenVAS
added 2019/11/26 12:0 a.m.37 views

Apache ZooKeeper < 3.4.10, 3.5.0-alpha - 3.5.3-beta Quorum Peer Mutual Authentication Vulnerability

Apache ZooKeeper is prone to a Quorum Peer mutual authentication vulnerability. Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program...

7.5CVSS7.5AI score0.08724EPSS
Exploits0References1
IBM Security Bulletins
IBM Security Bulletins
added 2019/02/11 4:15 p.m.37 views

Security Bulletin: InfoSphere Data Replication is affected by an Apache ZooKeeper open source library vulnerability

Summary InfoSphere Data Replication has addressed the following vulnerability: CVE-2018-8012 - Apache Zookeeper could allow a remote attacker to bypass security restrictions, caused by the failure to enforce authentication or authorization when a server attempts to join a quorum. An attacker coul...

7.5CVSS0.4AI score0.08724EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2018/10/04 2:10 a.m.46 views

Security Bulletin: IBM QRadar Incident Forensics is vulnerable to Public disclosed vulnerability from Apache ZooKeeper (CVE-2018-8012)

Summary Public disclosed vulnerability from Apache ZooKeeper Vulnerability Details CVEID: CVE-2018-8012 Description: Apache Zookeeper could allow a remote attacker to bypass security restrictions, caused by the failure to enforce authentication or authorization when a server attempts to join a...

7.5CVSS0.6AI score0.08724EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2018/07/20 6:55 p.m.34 views

Security Bulletin: A Security Vulnerability affects IBM® Cloud Private (‪CVE-2018-8012)‬‬‬

Summary IBM Cloud Private is vulnerable to a security vulnerability Vulnerability Details CVEID: CVE-2018-8012 DESCRIPTION: Apache Zookeeper could allow a remote attacker to bypass security restrictions, caused by the failure to enforce authentication or authorization when a server attempts to jo...

7.5CVSS0.9AI score0.08724EPSS
Exploits0Affected Software1
Tenable Nessus
Tenable Nessus
added 2018/06/05 12:0 a.m.27 views

Debian DSA-4214-1 : zookeeper - security update

It was discovered that Zookeeper, a service for maintaining configuration information, enforced no authentication/authorisation when a server attempts to join a Zookeeper quorum. This update backports authentication support. Additional configuration steps are needed, please see...

7.5CVSS7.5AI score0.08724EPSS
Exploits0References6
Debian
Debian
added 2018/06/01 9:23 p.m.27 views

[SECURITY] [DSA 4214-1] zookeeper security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4214-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff June 01, 2018 https://www.debian.org/security/faq -...

7.5CVSS7.7AI score0.08724EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2018/05/23 4:21 a.m.21 views

CVE-2018-8012

No authentication/authorization is enforced when a server attempts to join a quorum in Apache ZooKeeper before 3.4.10, and 3.5.0-alpha through 3.5.3-beta. As a result an arbitrary end point could join the cluster and begin propagating counterfeit changes to the leader...

7.5CVSS2AI score0.08724EPSS
Exploits0References2
NVD
NVD
added 2018/05/21 7:29 p.m.17 views

CVE-2018-8012

No authentication/authorization is enforced when a server attempts to join a quorum in Apache ZooKeeper before 3.4.10, and 3.5.0-alpha through 3.5.3-beta. As a result an arbitrary end point could join the cluster and begin propagating counterfeit changes to the leader...

7.5CVSS7.6AI score0.08724EPSS
Exploits0References12
Cvelist
Cvelist
added 2018/05/21 7:0 p.m.16 views

CVE-2018-8012

No authentication/authorization is enforced when a server attempts to join a quorum in Apache ZooKeeper before 3.4.10, and 3.5.0-alpha through 3.5.3-beta. As a result an arbitrary end point could join the cluster and begin propagating counterfeit changes to the leader...

7.5AI score0.08724EPSS
Exploits0References12
CVE
CVE
added 2018/05/21 7:0 p.m.127 views

CVE-2018-8012

CVE-2018-8012 affects Apache ZooKeeper: no authentication/authorization is enforced when a server attempts to join a quorum (before 3.4.10 and 3.5.0-alpha to 3.5.3-beta). This allows an arbitrary endpoint to join the cluster and propagate counterfeit changes to the leader. IBM and related advisor...

7.5CVSS7.3AI score0.08724EPSS
Exploits0References12Affected Software1
Debian CVE
Debian CVE
added 2018/05/21 7:0 p.m.24 views

CVE-2018-8012

No authentication/authorization is enforced when a server attempts to join a quorum in Apache ZooKeeper before 3.4.10, and 3.5.0-alpha through 3.5.3-beta. As a result an arbitrary end point could join the cluster and begin propagating counterfeit changes to the leader...

7.5CVSS2AI score0.08724EPSS
Exploits0
Rows per page
Query Builder