All 9 CVE vulnerabilities found in Apache ZooKeeper, with AI-generated Chinese analysis, references, and POCs.
Vendor: Apache Software Foundation
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2026-24308 | Apache ZooKeeper: Sensitive information disclosure in client configuration handling CWE-532 | 7.5 | - | 2026-03-07 |
| CVE-2026-24281 | Apache ZooKeeper: Reverse-DNS fallback enables hostname verification bypass in ZooKeeper ZKTrustManager CWE-350 | 7.4 | - | 2026-03-07 |
| CVE-2025-58457 | Apache ZooKeeper: Insufficient Permission Check in AdminServer Snapshot/Restore Commands CWE-280 | 8.8AI | HighAI | 2025-09-24 |
| CVE-2024-51504 | Apache ZooKeeper: Authentication bypass with IP-based authentication in Admin Server CWE-290 | 9.1AI | CriticalAI | 2024-11-07 |
| CVE-2024-23944 | Apache ZooKeeper: Information disclosure in persistent watcher handling CWE-862 | 5.3 | - | 2024-03-15 |
| CVE-2023-44981 | Apache ZooKeeper: Authorization bypass in SASL Quorum Peer Authentication CWE-639 | 9.1 | - | 2023-10-11 |
| CVE-2019-0201 | Apache Zookeeper 授权问题漏洞 | 5.9 | - | 2019-05-23 |
| CVE-2018-8012 | Apache Zookeeper 访问控制错误漏洞 | 7.5 | - | 2018-05-21 |
| CVE-2017-5637 | Apache Zookeeper 安全漏洞 | 7.5 | - | 2017-10-10 |
All 9 known CVE vulnerabilities affecting Apache ZooKeeper with full Chinese analysis, references, and POCs where available.