Apache ZooKeeper CVE-2018-8012 Security Bypass Vulnerability
BID:104253
CVE-2018-8012 |Info
Apache ZooKeeper CVE-2018-8012 Security Bypass Vulnerability
| Bugtraq ID: | 104253 |
| Class: | Unknown |
| CVE: |
CVE-2018-8012 |
| Remote: | Yes |
| Local: | No |
| Published: | May 21 2018 12:00AM |
| Updated: | May 21 2018 12:00AM |
| Credit: | Földi Tamás and Eugene Koontz |
| Vulnerable: |
Apache ZooKeeper 3.3.5 Apache ZooKeeper 3.3 Apache ZooKeeper 3.5.3-beta Apache ZooKeeper 3.5.0-alpha Apache ZooKeeper 3.3 Apache ZooKeeper 1.0 |
| Not Vulnerable: |
Apache ZooKeeper 3.4 |
Discussion
Apache ZooKeeper CVE-2018-8012 Security Bypass Vulnerability
Apache ZooKeeper is prone to a security-bypass vulnerability.
Attackers can exploit this issue to bypass certain security restrictions to perform unauthorized actions. This may aid in further attacks.
Versions prior to Apache ZooKeeper 3.4.10 are vulnerable.
Apache ZooKeeper is prone to a security-bypass vulnerability.
Attackers can exploit this issue to bypass certain security restrictions to perform unauthorized actions. This may aid in further attacks.
Versions prior to Apache ZooKeeper 3.4.10 are vulnerable.
Exploit / POC
Apache ZooKeeper CVE-2018-8012 Security Bypass Vulnerability
Currently, we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Currently, we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Solution / Fix
Apache ZooKeeper CVE-2018-8012 Security Bypass Vulnerability
Solution:
Updates are available. Please see the references or vendor advisory for more information.
Solution:
Updates are available. Please see the references or vendor advisory for more information.
References
Apache ZooKeeper CVE-2018-8012 Security Bypass Vulnerability
References:
References: