Details
-
Bug
-
Status: Resolved
-
Major
-
Resolution: Fixed
-
None
-
None
Description
org.apache.servicemix.bundles.zookeeper:3.8.1_1 - is affected by security vulnerability CVE-2023-44981
Version Affected
[3.7.0_1,3.8.1_1]
Root Cause
org.apache.servicemix.bundles.zookeeper-3.8.1_1.jarorg/apache/zookeeper/server/quorum/auth/SaslQuorumServerCallbackHandler.class[3.8.0 , 3.8.3)
org.apache.servicemix.bundles.zookeeper-3.8.1_1.jarorg/apache/zookeeper/server/quorum/auth/SaslQuorumServerCallbackHandler.class[3.5.4-beta, 3.7.2)
Advisories
Projecthttps://lists.apache.org/thread/wf0yrk84dg1942z1o74kd8nycg6pgm5b
Third Partyhttps://github.com/advisories/GHSA-7286-pgfv-vxvh
CVSS Details
CVE CVSS 39.1
CVSS VectorCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N