3 matches found
Linux Distros Unpatched Vulnerability : CVE-2022-32531
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The Apache Bookkeeper Java Client before 4.14.6 and also 4.15.0 does not close the connection to the bookkeeper server when TLS hostname verification fails. Thi...
CVE-2022-32531 Apache BookKeeper: Java Client Uses Connection to Host that Failed Hostname Verification
The Apache Bookkeeper Java Client before 4.14.6 and also 4.15.0 does not close the connection to the bookkeeper server when TLS hostname verification fails. This leaves the bookkeeper client vulnerable to a man in the middle attack. The problem affects BookKeeper client prior to versions 4.14.6 a...
CVE-2022-32531
The CVE-2022-32531 issue affects the Apache Bookkeeper Java Client. Affected software: BookKeeper Java Client prior to versions 4.14.6 and 4.15.0. Root cause: the client does not close the connection to the bookkeeper server when TLS hostname verification fails, enabling a potential MITM conditio...