23 matches found
Security Bulletin: IBM Security Guardium is affected by multiple vulnerabilities (CVE-2017-5637, CVE-2019-0201, CVE-2018-8012, CVE-2023-44981)
Summary IBM Security Guardium uses Apache ZooKeeper as a component. This component has multiple vulnerabilities which might affect the product. These vulnerabilities have been addressed in an update. Vulnerability Details CVEID:CVE-2017-5637 DESCRIPTION: Apache Zookeeper is vulnerable to a denial...
Ubuntu: Security Advisory (USN-6559-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
K94504224: Apache ZooKeeper vulnerability CVE-2019-0201
Security Advisory Description An issue is present in Apache ZooKeeper 1.0.0 to 3.4.13 and 3.5.0-alpha to 3.5.4-beta. ZooKeepers getACL command doesnt check any permission when retrieves the ACLs of the requested node and returns all information contained in the ACL Id field as plaintext string...
Security Bulletin: IBM Sterling B2B Integrator B2B API vulnerable to multiple issues due to Apache Zookeeper (CVE-2019-0201, CVE-2021-21409)
Summary IBM Sterling B2B Integrator has addressed the security vulnerabilities in Apache Zookeeper. Vulnerability Details CVEID:CVE-2019-0201 DESCRIPTION: Apache ZooKeeper could allow a remote attacker to obtain sensitive information, caused by the failure to check permissions by the getACL...
Security Bulletin: IBM Operations Analytics - Log Analysis is affected by an Apache Zookeeper vulnerability (CVE-2019-0201)
Summary IBM Operations Analytics - Log Analysis has addressed a potential permission vulnerability in Apache ZooKeeper. Vulnerability Details CVEID: CVE-2019-0201 DESCRIPTION: Apache ZooKeeper could allow a remote attacker to obtain sensitive information, caused by the failure to check permission...
Security Bulletin: Apache ZooKeeper as used by IBM QRadar SIEM is vulnerable to information disclosure (CVE-2019-0201)
Summary Apache ZooKeeper as used by IBM QRadar SIEM is vulnerable to information disclosure. Vulnerability Details CVEID: CVE-2019-0201 DESCRIPTION: Apache ZooKeeper could allow a remote attacker to obtain sensitive information, caused by the failure to check permissions by the getACL command. By...
Security Bulletin: IBM Agile Lifecycle Manager is affected by an Apache Zookeeper vulnerability (CVE-2019-0201)
Summary IBM Agile Lifecycle Manager 2.1 has addressed the following vulnerability in Apache ZooKeeper. Vulnerability Details CVEID: CVE-2019-0201 DESCRIPTION: Apache ZooKeeper could allow a remote attacker to obtain sensitive information, caused by the failure to check permissions by the getACL...
Important: Red Hat Security Advisory: Red Hat JBoss Fuse/A-MQ 6.3 R14 security and bug fix update
An update is now available for Red Hat JBoss Fuse 6.3 and Red Hat JBoss A-MQ 6.3. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...
Apache ZooKeeper < 3.4.14, 3.5.0-alpha - 3.5.4-beta Information Disclosure Vulnerability
Apache ZooKeeper is prone to an information disclosure vulnerability. Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free...
Important: Red Hat Security Advisory: Red Hat Fuse 7.5.0 security update
A minor version update from 7.4 to 7.5 is now available for Red Hat Fuse. The purpose of this text-only errata is to inform you about the security issues fixed in this release. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring...
Important: Red Hat Security Advisory: Red Hat JBoss Data Virtualization 6.4.8 security update
An update is now available for Red Hat JBoss Data Virtualization. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CV...
Security Bulletin: Multiple vulnerabilities have been identified in bundled libraries of IBM Tivoli Netcool/OMNIbus Common Integration Libraries (CVE-2019-12086, CVE-2019-0201)
Summary FasterXML Jackson library is a dependency component shipped with the IBM Tivoli Netcool/OMNIbus Transport Module Common Integration Library and Transformer for Message Bus Integration. Information about security vulnerabilities affecting FasterXML Jackson library has been published...
Security Bulletin: Watson Explorer is affected by an Apache Zookeeper vulnerability (CVE-2019-0201)
Summary IBM Watson Explorer has addressed the following vulnerability in Apache ZooKeeper. Vulnerability Details CVEID: CVE-2019-0201 DESCRIPTION: Apache ZooKeeper could allow a remote attacker to obtain sensitive information, caused by the failure to check permissions by the getACL command. By...
Security Bulletin: IBM Netcool Agile Service Manager is affected by an Apache Zookeeper vulnerability (CVE-2019-0201)
Summary IBM Netcool Agile Service Manager has addressed the following vulnerability in Apache ZooKeeper. Vulnerability Details CVEID: CVE-2019-0201 DESCRIPTION: Apache ZooKeeper could allow a remote attacker to obtain sensitive information, caused by the failure to check permissions by the getACL...
Security Bulletin: IBM Event Streams is affected by Apache ZooKeeper vulnerability CVE-2019-0201
Summary IBM Event Streams has addressed the following vulnerability. Vulnerability Details CVEID: CVE-2019-0201 DESCRIPTION: Apache ZooKeeper could allow a remote attacker to obtain sensitive information, caused by the failure to check permissions by the getACL command. By sending a...
Photon OS 1.0: Zookeeper PHSA-2019-1.0-0237
An update of the zookeeper package has been released. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2019-1.0-0237. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...
Debian DSA-4461-1 : zookeeper - security update
Harrison Neil discovered that the getACL command in Zookeeper, a service for maintaining configuration information, did not validate permissions, which could result in information disclosure. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted fr...
Debian: Security Advisory (DSA-4461-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Apache ZooKeeper < 3.4.14 / 3.5.x < 3.5.5 Information Disclosure
The version of Apache ZooKeeper listening on the remote host is prior to 3.4.14 or 3.5.x prior to 3.5.5. It is, therefore, affected by an information disclosure vulnerability in ZooKeeper's getACL command as a result of not checking requester permissions. An unauthenticated, remote attacker can...
ai.catboost:catboost-spark_3.1_2.12 (>=1.0.1 <=1.2.8), ai.tripl:arc-big-query-pipeline-plugin_2.12 (>=1.0.0 <=1.8.0) +2737 more potentially affected by CVE-2019-0201 via org.apache.zookeeper:zookeeper (>=3.3.0 <=3.4.13)
org.apache.zookeeper:zookeeper MAVEN version =3.3.0, =1.0.1, =1.0.0, =1.4.0, =1.4.0, =1.0.0, =1.3.0, =1.0.0, =1.0.0, =1.0.0, =1.3.0, =1.3.0, =1.0.0, =3.0.0, =1.0, =1.2 - ca.innovativemedicine:vcfimp-solr2.10 =0.7.0 and more Source cves: CVE-2019-0201 Source advisory: OSV:GHSA-2HW2-62CP-P9P7...