Apache ZooKeeper: Insufficient Permission Check in AdminServer Snapshot/Restore Commands
Description
Improper permission check in ZooKeeper AdminServer lets authorized clients to run snapshot and restore command with insufficient permissions.
This issue affects Apache ZooKeeper: from 3.9.0 before 3.9.4.
Users are recommended to upgrade to version 3.9.4, which fixes the issue.
The issue can be mitigated by disabling both commands (via admin.snapshot.enabled and admin.restore.enabled), disabling the whole AdminServer interface (via admin.enableServer), or ensuring that the root ACL does not provide open permissions. (Note that ZooKeeper ACLs are not recursive, so this does not impact operations on child nodes besides notifications from recursive watches.)
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
org.apache.zookeeper:zookeeperMaven | >= 3.9.0, < 3.9.4 | 3.9.4 |
Affected products
257- osv-coords256 versionspkg:apk/chainguard/apache-activemq-artemispkg:apk/chainguard/apache-activemq-artemis-compatpkg:apk/chainguard/apache-pulsarpkg:apk/chainguard/apache-pulsar-compatpkg:apk/chainguard/kafka_exporter-strimzi-compatpkg:apk/chainguard/kafka-strimzi-compatpkg:apk/chainguard/prometheus-jmx-exporter-strimzi-compatpkg:apk/chainguard/pyspark-scala-2.13pkg:apk/chainguard/solrpkg:apk/chainguard/solr-oci-compatpkg:apk/chainguard/spark-3.5pkg:apk/chainguard/spark-3.5-bitnami-compatpkg:apk/chainguard/spark-3.5-compatpkg:apk/chainguard/spark-3.5-minimalpkg:apk/chainguard/spark-3.5-minimal-openjdk-11pkg:apk/chainguard/spark-3.5-minimal-openjdk-17pkg:apk/chainguard/spark-3.5-minimal-openjdk-8pkg:apk/chainguard/spark-3.5-openjdk-11pkg:apk/chainguard/spark-3.5-openjdk-17pkg:apk/chainguard/spark-3.5-openjdk-8pkg:apk/chainguard/spark-3.5-scala-2.12pkg:apk/chainguard/spark-3.5-scala-2.12-bitnami-compatpkg:apk/chainguard/spark-3.5-scala-2.12-compatpkg:apk/chainguard/spark-3.5-scala-2.12-iamguarded-compatpkg:apk/chainguard/spark-3.5-scala-2.12-minimal-openjdk-11pkg:apk/chainguard/spark-3.5-scala-2.12-minimal-openjdk-17pkg:apk/chainguard/spark-3.5-scala-2.12-minimal-openjdk-8pkg:apk/chainguard/spark-3.5-scala-2.12-openjdk-11pkg:apk/chainguard/spark-3.5-scala-2.12-openjdk-17pkg:apk/chainguard/spark-3.5-scala-2.12-openjdk-8pkg:apk/chainguard/spark-3.5-scala-2.13pkg:apk/chainguard/spark-3.5-scala-2.13-compatpkg:apk/chainguard/spark-3.5-scala-2.13-openjdk-11pkg:apk/chainguard/spark-3.5-scala-2.13-openjdk-17pkg:apk/chainguard/spark-3.5-scala-2.13-openjdk-8pkg:apk/chainguard/spark-4.0pkg:apk/chainguard/spark-4.0-scala-2.13pkg:apk/chainguard/spark-4.0-scala-2.13-compatpkg:apk/chainguard/spark-fips-3.5pkg:apk/chainguard/spark-fips-3.5-scala-2.12pkg:apk/chainguard/spark-fips-3.5-scala-2.12-compatpkg:apk/chainguard/spark-fips-3.5-scala-2.13pkg:apk/chainguard/spark-fips-3.5-scala-2.13-compatpkg:apk/chainguard/strimzi-kafka-operatorpkg:apk/chainguard/strimzi-kafka-operator-cluster-operatorpkg:apk/chainguard/strimzi-kafka-operator-kafka-agentpkg:apk/chainguard/strimzi-kafka-operator-kafka-agent-3pkg:apk/chainguard/strimzi-kafka-operator-kafka-basepkg:apk/chainguard/strimzi-kafka-operator-kafka-initpkg:apk/chainguard/strimzi-kafka-operator-kafka-thirdparty-libspkg:apk/chainguard/strimzi-kafka-operator-kafka-thirdparty-libs-ccpkg:apk/chainguard/strimzi-kafka-operator-mirror-maker-agentpkg:apk/chainguard/strimzi-kafka-operator-topic-operatorpkg:apk/chainguard/strimzi-kafka-operator-tracing-agentpkg:apk/chainguard/strimzi-kafka-operator-user-operatorpkg:apk/chainguard/thingsboardpkg:apk/chainguard/thingsboard-tb-js-executorpkg:apk/chainguard/thingsboard-tb-mqtt-transportpkg:apk/chainguard/thingsboard-tb-nodepkg:apk/chainguard/thingsboard-tb-web-uipkg:apk/chainguard/trinopkg:apk/chainguard/trino-configpkg:apk/chainguard/trino-oci-entrypointpkg:apk/chainguard/trino-plugin-accumulopkg:apk/chainguard/trino-plugin-ai-functionspkg:apk/chainguard/trino-plugin-atoppkg:apk/chainguard/trino-plugin-bigquerypkg:apk/chainguard/trino-plugin-blackholepkg:apk/chainguard/trino-plugin-cassandrapkg:apk/chainguard/trino-plugin-clickhousepkg:apk/chainguard/trino-plugin-delta-lakepkg:apk/chainguard/trino-plugin-druidpkg:apk/chainguard/trino-plugin-duckdbpkg:apk/chainguard/trino-plugin-elasticsearchpkg:apk/chainguard/trino-plugin-example-httppkg:apk/chainguard/trino-plugin-exasolpkg:apk/chainguard/trino-plugin-exchange-filesystempkg:apk/chainguard/trino-plugin-exchange-hdfspkg:apk/chainguard/trino-plugin-fakerpkg:apk/chainguard/trino-plugin-functions-pythonpkg:apk/chainguard/trino-plugin-geospatialpkg:apk/chainguard/trino-plugin-google-sheetspkg:apk/chainguard/trino-plugin-hivepkg:apk/chainguard/trino-plugin-http-event-listenerpkg:apk/chainguard/trino-plugin-http-server-event-listenerpkg:apk/chainguard/trino-plugin-hudipkg:apk/chainguard/trino-plugin-icebergpkg:apk/chainguard/trino-plugin-ignitepkg:apk/chainguard/trino-plugin-jmxpkg:apk/chainguard/trino-plugin-kafkapkg:apk/chainguard/trino-plugin-kafka-event-listenerpkg:apk/chainguard/trino-plugin-kinesispkg:apk/chainguard/trino-plugin-kudupkg:apk/chainguard/trino-plugin-lakehousepkg:apk/chainguard/trino-plugin-ldap-group-providerpkg:apk/chainguard/trino-plugin-local-filepkg:apk/chainguard/trino-plugin-lokipkg:apk/chainguard/trino-plugin-mariadbpkg:apk/chainguard/trino-plugin-memorypkg:apk/chainguard/trino-plugin-mlpkg:apk/chainguard/trino-plugin-mongodbpkg:apk/chainguard/trino-plugin-mysqlpkg:apk/chainguard/trino-plugin-mysql-event-listenerpkg:apk/chainguard/trino-plugin-opapkg:apk/chainguard/trino-plugin-openlineagepkg:apk/chainguard/trino-plugin-opensearchpkg:apk/chainguard/trino-plugin-oraclepkg:apk/chainguard/trino-plugin-password-authenticatorspkg:apk/chainguard/trino-plugin-phoenix5pkg:apk/chainguard/trino-plugin-pinotpkg:apk/chainguard/trino-plugin-postgresqlpkg:apk/chainguard/trino-plugin-prometheuspkg:apk/chainguard/trino-plugin-rangerpkg:apk/chainguard/trino-plugin-raptor-legacypkg:apk/chainguard/trino-plugin-redispkg:apk/chainguard/trino-plugin-redshiftpkg:apk/chainguard/trino-plugin-resource-group-managerspkg:apk/chainguard/trino-plugin-session-property-managerspkg:apk/chainguard/trino-plugin-singlestorepkg:apk/chainguard/trino-plugin-snowflakepkg:apk/chainguard/trino-plugin-spooling-filesystempkg:apk/chainguard/trino-plugin-sqlserverpkg:apk/chainguard/trino-plugin-teradata-functionspkg:apk/chainguard/trino-plugin-thriftpkg:apk/chainguard/trino-plugin-tpcdspkg:apk/chainguard/trino-plugin-tpchpkg:apk/chainguard/trino-plugin-verticapkg:apk/chainguard/wso2ispkg:apk/chainguard/wso2is-compatpkg:apk/chainguard/wso2is-docpkg:apk/chainguard/zookeeper-custompkg:apk/chainguard/zookeeper-custom-oci-entrypointpkg:apk/wolfi/apache-activemq-artemispkg:apk/wolfi/apache-activemq-artemis-compatpkg:apk/wolfi/apache-pulsarpkg:apk/wolfi/apache-pulsar-compatpkg:apk/wolfi/kafka_exporter-strimzi-compatpkg:apk/wolfi/kafka-strimzi-compatpkg:apk/wolfi/prometheus-jmx-exporter-strimzi-compatpkg:apk/wolfi/pyspark-scala-2.13pkg:apk/wolfi/solrpkg:apk/wolfi/solr-oci-compatpkg:apk/wolfi/spark-3.5pkg:apk/wolfi/spark-3.5-bitnami-compatpkg:apk/wolfi/spark-3.5-compatpkg:apk/wolfi/spark-3.5-minimalpkg:apk/wolfi/spark-3.5-minimal-openjdk-11pkg:apk/wolfi/spark-3.5-minimal-openjdk-17pkg:apk/wolfi/spark-3.5-minimal-openjdk-8pkg:apk/wolfi/spark-3.5-openjdk-11pkg:apk/wolfi/spark-3.5-openjdk-17pkg:apk/wolfi/spark-3.5-openjdk-8pkg:apk/wolfi/spark-3.5-scala-2.12pkg:apk/wolfi/spark-3.5-scala-2.12-bitnami-compatpkg:apk/wolfi/spark-3.5-scala-2.12-compatpkg:apk/wolfi/spark-3.5-scala-2.12-iamguarded-compatpkg:apk/wolfi/spark-3.5-scala-2.12-minimal-openjdk-11pkg:apk/wolfi/spark-3.5-scala-2.12-minimal-openjdk-17pkg:apk/wolfi/spark-3.5-scala-2.12-minimal-openjdk-8pkg:apk/wolfi/spark-3.5-scala-2.12-openjdk-11pkg:apk/wolfi/spark-3.5-scala-2.12-openjdk-17pkg:apk/wolfi/spark-3.5-scala-2.12-openjdk-8pkg:apk/wolfi/spark-3.5-scala-2.13pkg:apk/wolfi/spark-3.5-scala-2.13-compatpkg:apk/wolfi/spark-3.5-scala-2.13-openjdk-11pkg:apk/wolfi/spark-3.5-scala-2.13-openjdk-17pkg:apk/wolfi/spark-3.5-scala-2.13-openjdk-8pkg:apk/wolfi/spark-4.0pkg:apk/wolfi/spark-4.0-scala-2.13pkg:apk/wolfi/spark-4.0-scala-2.13-compatpkg:apk/wolfi/strimzi-kafka-operatorpkg:apk/wolfi/strimzi-kafka-operator-cluster-operatorpkg:apk/wolfi/strimzi-kafka-operator-kafka-agentpkg:apk/wolfi/strimzi-kafka-operator-kafka-agent-3pkg:apk/wolfi/strimzi-kafka-operator-kafka-basepkg:apk/wolfi/strimzi-kafka-operator-kafka-initpkg:apk/wolfi/strimzi-kafka-operator-kafka-thirdparty-libspkg:apk/wolfi/strimzi-kafka-operator-kafka-thirdparty-libs-ccpkg:apk/wolfi/strimzi-kafka-operator-mirror-maker-agentpkg:apk/wolfi/strimzi-kafka-operator-topic-operatorpkg:apk/wolfi/strimzi-kafka-operator-tracing-agentpkg:apk/wolfi/strimzi-kafka-operator-user-operatorpkg:apk/wolfi/thingsboardpkg:apk/wolfi/thingsboard-tb-js-executorpkg:apk/wolfi/thingsboard-tb-mqtt-transportpkg:apk/wolfi/thingsboard-tb-nodepkg:apk/wolfi/thingsboard-tb-web-uipkg:apk/wolfi/trinopkg:apk/wolfi/trino-configpkg:apk/wolfi/trino-oci-entrypointpkg:apk/wolfi/trino-plugin-accumulopkg:apk/wolfi/trino-plugin-ai-functionspkg:apk/wolfi/trino-plugin-atoppkg:apk/wolfi/trino-plugin-bigquerypkg:apk/wolfi/trino-plugin-blackholepkg:apk/wolfi/trino-plugin-cassandrapkg:apk/wolfi/trino-plugin-clickhousepkg:apk/wolfi/trino-plugin-delta-lakepkg:apk/wolfi/trino-plugin-druidpkg:apk/wolfi/trino-plugin-duckdbpkg:apk/wolfi/trino-plugin-elasticsearchpkg:apk/wolfi/trino-plugin-example-httppkg:apk/wolfi/trino-plugin-exasolpkg:apk/wolfi/trino-plugin-exchange-filesystempkg:apk/wolfi/trino-plugin-exchange-hdfspkg:apk/wolfi/trino-plugin-fakerpkg:apk/wolfi/trino-plugin-functions-pythonpkg:apk/wolfi/trino-plugin-geospatialpkg:apk/wolfi/trino-plugin-google-sheetspkg:apk/wolfi/trino-plugin-hivepkg:apk/wolfi/trino-plugin-http-event-listenerpkg:apk/wolfi/trino-plugin-http-server-event-listenerpkg:apk/wolfi/trino-plugin-hudipkg:apk/wolfi/trino-plugin-icebergpkg:apk/wolfi/trino-plugin-ignitepkg:apk/wolfi/trino-plugin-jmxpkg:apk/wolfi/trino-plugin-kafkapkg:apk/wolfi/trino-plugin-kafka-event-listenerpkg:apk/wolfi/trino-plugin-kinesispkg:apk/wolfi/trino-plugin-kudupkg:apk/wolfi/trino-plugin-lakehousepkg:apk/wolfi/trino-plugin-ldap-group-providerpkg:apk/wolfi/trino-plugin-local-filepkg:apk/wolfi/trino-plugin-lokipkg:apk/wolfi/trino-plugin-mariadbpkg:apk/wolfi/trino-plugin-memorypkg:apk/wolfi/trino-plugin-mlpkg:apk/wolfi/trino-plugin-mongodbpkg:apk/wolfi/trino-plugin-mysqlpkg:apk/wolfi/trino-plugin-mysql-event-listenerpkg:apk/wolfi/trino-plugin-opapkg:apk/wolfi/trino-plugin-openlineagepkg:apk/wolfi/trino-plugin-opensearchpkg:apk/wolfi/trino-plugin-oraclepkg:apk/wolfi/trino-plugin-password-authenticatorspkg:apk/wolfi/trino-plugin-phoenix5pkg:apk/wolfi/trino-plugin-pinotpkg:apk/wolfi/trino-plugin-postgresqlpkg:apk/wolfi/trino-plugin-prometheuspkg:apk/wolfi/trino-plugin-rangerpkg:apk/wolfi/trino-plugin-raptor-legacypkg:apk/wolfi/trino-plugin-redispkg:apk/wolfi/trino-plugin-redshiftpkg:apk/wolfi/trino-plugin-resource-group-managerspkg:apk/wolfi/trino-plugin-session-property-managerspkg:apk/wolfi/trino-plugin-singlestorepkg:apk/wolfi/trino-plugin-snowflakepkg:apk/wolfi/trino-plugin-spooling-filesystempkg:apk/wolfi/trino-plugin-sqlserverpkg:apk/wolfi/trino-plugin-teradata-functionspkg:apk/wolfi/trino-plugin-thriftpkg:apk/wolfi/trino-plugin-tpcdspkg:apk/wolfi/trino-plugin-tpchpkg:apk/wolfi/trino-plugin-verticapkg:bitnami/zookeeperpkg:maven/org.apache.zookeeper/zookeeper
< 2.42.0-r9+ 255 more
- (no CPE)range: < 2.42.0-r9
- (no CPE)range: < 2.42.0-r9
- (no CPE)range: < 4.1.0-r1
- (no CPE)range: < 4.1.0-r1
- (no CPE)range: < 0.47.0-r8
- (no CPE)range: < 0.47.0-r8
- (no CPE)range: < 0.47.0-r8
- (no CPE)range: < 3.5.7-r2
- (no CPE)range: < 9.9.0-r3
- (no CPE)range: < 9.9.0-r3
- (no CPE)range: < 3.5.7-r2
- (no CPE)range: < 3.5.7-r2
- (no CPE)range: < 3.5.7-r2
- (no CPE)range: < 3.5.7-r2
- (no CPE)range: < 3.5.7-r2
- (no CPE)range: < 3.5.7-r2
- (no CPE)range: < 3.5.7-r2
- (no CPE)range: < 3.5.7-r2
- (no CPE)range: < 3.5.7-r2
- (no CPE)range: < 3.5.7-r2
- (no CPE)range: < 3.5.7-r2
- (no CPE)range: < 3.5.7-r2
- (no CPE)range: < 3.5.7-r2
- (no CPE)range: < 3.5.7-r2
- (no CPE)range: < 3.5.7-r2
- (no CPE)range: < 3.5.7-r2
- (no CPE)range: < 3.5.7-r2
- (no CPE)range: < 3.5.7-r2
- (no CPE)range: < 3.5.7-r2
- (no CPE)range: < 3.5.7-r2
- (no CPE)range: < 3.5.7-r2
- (no CPE)range: < 3.5.7-r2
- (no CPE)range: < 3.5.7-r2
- (no CPE)range: < 3.5.7-r2
- (no CPE)range: < 3.5.7-r2
- (no CPE)range: < 4.0.1-r1
- (no CPE)range: < 4.0.1-r1
- (no CPE)range: < 4.0.1-r1
- (no CPE)range: < 3.5.4-r17
- (no CPE)range: < 3.5.4-r17
- (no CPE)range: < 3.5.4-r17
- (no CPE)range: < 3.5.4-r17
- (no CPE)range: < 3.5.4-r17
- (no CPE)range: < 0.47.0-r8
- (no CPE)range: < 0.47.0-r8
- (no CPE)range: < 0.47.0-r8
- (no CPE)range: < 0.47.0-r8
- (no CPE)range: < 0.47.0-r8
- (no CPE)range: < 0.47.0-r8
- (no CPE)range: < 0.47.0-r8
- (no CPE)range: < 0.47.0-r8
- (no CPE)range: < 0.47.0-r8
- (no CPE)range: < 0.47.0-r8
- (no CPE)range: < 0.47.0-r8
- (no CPE)range: < 0.47.0-r8
- (no CPE)range: < 4.2-r7
- (no CPE)range: < 4.2-r7
- (no CPE)range: < 4.2-r7
- (no CPE)range: < 4.2-r7
- (no CPE)range: < 4.2-r7
- (no CPE)range: < 476-r9
- (no CPE)range: < 476-r9
- (no CPE)range: < 476-r9
- (no CPE)range: < 476-r9
- (no CPE)range: < 476-r9
- (no CPE)range: < 476-r9
- (no CPE)range: < 476-r9
- (no CPE)range: < 476-r9
- (no CPE)range: < 476-r9
- (no CPE)range: < 476-r9
- (no CPE)range: < 476-r9
- (no CPE)range: < 476-r9
- (no CPE)range: < 476-r9
- (no CPE)range: < 476-r9
- (no CPE)range: < 476-r9
- (no CPE)range: < 476-r9
- (no CPE)range: < 476-r9
- (no CPE)range: < 476-r9
- (no CPE)range: < 476-r9
- (no CPE)range: < 476-r9
- (no CPE)range: < 476-r9
- (no CPE)range: < 476-r9
- (no CPE)range: < 476-r9
- (no CPE)range: < 476-r9
- (no CPE)range: < 476-r9
- (no CPE)range: < 476-r9
- (no CPE)range: < 476-r9
- (no CPE)range: < 476-r9
- (no CPE)range: < 476-r9
- (no CPE)range: < 476-r9
- (no CPE)range: < 476-r9
- (no CPE)range: < 476-r9
- (no CPE)range: < 476-r9
- (no CPE)range: < 476-r9
- (no CPE)range: < 476-r9
- (no CPE)range: < 476-r9
- (no CPE)range: < 476-r9
- (no CPE)range: < 476-r9
- (no CPE)range: < 476-r9
- (no CPE)range: < 476-r9
- (no CPE)range: < 476-r9
- (no CPE)range: < 476-r9
- (no CPE)range: < 476-r9
- (no CPE)range: < 476-r9
- (no CPE)range: < 476-r9
- (no CPE)range: < 476-r9
- (no CPE)range: < 476-r9
- (no CPE)range: < 476-r9
- (no CPE)range: < 476-r9
- (no CPE)range: < 476-r9
- (no CPE)range: < 476-r9
- (no CPE)range: < 476-r9
- (no CPE)range: < 476-r9
- (no CPE)range: < 476-r9
- (no CPE)range: < 476-r9
- (no CPE)range: < 476-r9
- (no CPE)range: < 476-r9
- (no CPE)range: < 476-r9
- (no CPE)range: < 476-r9
- (no CPE)range: < 476-r9
- (no CPE)range: < 476-r9
- (no CPE)range: < 476-r9
- (no CPE)range: < 476-r9
- (no CPE)range: < 476-r9
- (no CPE)range: < 476-r9
- (no CPE)range: < 476-r9
- (no CPE)range: < 476-r9
- (no CPE)range: < 7.2.0-r0
- (no CPE)range: < 7.2.0-r0
- (no CPE)range: < 7.2.0-r0
- (no CPE)range: < 3.9.4-r0
- (no CPE)range: < 3.9.4-r0
- (no CPE)range: < 2.42.0-r9
- (no CPE)range: < 2.42.0-r9
- (no CPE)range: < 4.1.0-r1
- (no CPE)range: < 4.1.0-r1
- (no CPE)range: < 0.47.0-r8
- (no CPE)range: < 0.47.0-r8
- (no CPE)range: < 0.47.0-r8
- (no CPE)range: < 3.5.7-r2
- (no CPE)range: < 9.9.0-r3
- (no CPE)range: < 9.9.0-r3
- (no CPE)range: < 3.5.7-r2
- (no CPE)range: < 3.5.7-r2
- (no CPE)range: < 3.5.7-r2
- (no CPE)range: < 3.5.7-r2
- (no CPE)range: < 3.5.7-r2
- (no CPE)range: < 3.5.7-r2
- (no CPE)range: < 3.5.7-r2
- (no CPE)range: < 3.5.7-r2
- (no CPE)range: < 3.5.7-r2
- (no CPE)range: < 3.5.7-r2
- (no CPE)range: < 3.5.7-r2
- (no CPE)range: < 3.5.7-r2
- (no CPE)range: < 3.5.7-r2
- (no CPE)range: < 3.5.7-r2
- (no CPE)range: < 3.5.7-r2
- (no CPE)range: < 3.5.7-r2
- (no CPE)range: < 3.5.7-r2
- (no CPE)range: < 3.5.7-r2
- (no CPE)range: < 3.5.7-r2
- (no CPE)range: < 3.5.7-r2
- (no CPE)range: < 3.5.7-r2
- (no CPE)range: < 3.5.7-r2
- (no CPE)range: < 3.5.7-r2
- (no CPE)range: < 3.5.7-r2
- (no CPE)range: < 3.5.7-r2
- (no CPE)range: < 4.0.1-r1
- (no CPE)range: < 4.0.1-r1
- (no CPE)range: < 4.0.1-r1
- (no CPE)range: < 0.47.0-r8
- (no CPE)range: < 0.47.0-r8
- (no CPE)range: < 0.47.0-r8
- (no CPE)range: < 0.47.0-r8
- (no CPE)range: < 0.47.0-r8
- (no CPE)range: < 0.47.0-r8
- (no CPE)range: < 0.47.0-r8
- (no CPE)range: < 0.47.0-r8
- (no CPE)range: < 0.47.0-r8
- (no CPE)range: < 0.47.0-r8
- (no CPE)range: < 0.47.0-r8
- (no CPE)range: < 0.47.0-r8
- (no CPE)range: < 4.2-r7
- (no CPE)range: < 4.2-r7
- (no CPE)range: < 4.2-r7
- (no CPE)range: < 4.2-r7
- (no CPE)range: < 4.2-r7
- (no CPE)range: < 476-r9
- (no CPE)range: < 476-r9
- (no CPE)range: < 476-r9
- (no CPE)range: < 476-r9
- (no CPE)range: < 476-r9
- (no CPE)range: < 476-r9
- (no CPE)range: < 476-r9
- (no CPE)range: < 476-r9
- (no CPE)range: < 476-r9
- (no CPE)range: < 476-r9
- (no CPE)range: < 476-r9
- (no CPE)range: < 476-r9
- (no CPE)range: < 476-r9
- (no CPE)range: < 476-r9
- (no CPE)range: < 476-r9
- (no CPE)range: < 476-r9
- (no CPE)range: < 476-r9
- (no CPE)range: < 476-r9
- (no CPE)range: < 476-r9
- (no CPE)range: < 476-r9
- (no CPE)range: < 476-r9
- (no CPE)range: < 476-r9
- (no CPE)range: < 476-r9
- (no CPE)range: < 476-r9
- (no CPE)range: < 476-r9
- (no CPE)range: < 476-r9
- (no CPE)range: < 476-r9
- (no CPE)range: < 476-r9
- (no CPE)range: < 476-r9
- (no CPE)range: < 476-r9
- (no CPE)range: < 476-r9
- (no CPE)range: < 476-r9
- (no CPE)range: < 476-r9
- (no CPE)range: < 476-r9
- (no CPE)range: < 476-r9
- (no CPE)range: < 476-r9
- (no CPE)range: < 476-r9
- (no CPE)range: < 476-r9
- (no CPE)range: < 476-r9
- (no CPE)range: < 476-r9
- (no CPE)range: < 476-r9
- (no CPE)range: < 476-r9
- (no CPE)range: < 476-r9
- (no CPE)range: < 476-r9
- (no CPE)range: < 476-r9
- (no CPE)range: < 476-r9
- (no CPE)range: < 476-r9
- (no CPE)range: < 476-r9
- (no CPE)range: < 476-r9
- (no CPE)range: < 476-r9
- (no CPE)range: < 476-r9
- (no CPE)range: < 476-r9
- (no CPE)range: < 476-r9
- (no CPE)range: < 476-r9
- (no CPE)range: < 476-r9
- (no CPE)range: < 476-r9
- (no CPE)range: < 476-r9
- (no CPE)range: < 476-r9
- (no CPE)range: < 476-r9
- (no CPE)range: < 476-r9
- (no CPE)range: < 476-r9
- (no CPE)range: < 476-r9
- (no CPE)range: < 476-r9
- (no CPE)range: < 476-r9
- (no CPE)range: < 476-r9
- (no CPE)range: < 476-r9
- (no CPE)range: < 476-r9
- (no CPE)range: >= 3.9.0, < 3.9.4
- (no CPE)range: >= 3.9.0, < 3.9.4
Patches
Vulnerability mechanics
References
8- github.com/advisories/GHSA-2hmj-97jw-28jhghsaADVISORY
- lists.apache.org/thread/r5yol0kkhx2fzw22pxk1ozwm3oc6yxrxghsavendor-advisoryWEB
- nvd.nist.gov/vuln/detail/CVE-2025-58457ghsaADVISORY
- github.com/apache/zookeeper/commit/71e173fcbcc9deb784081cf867bd045df3c32635ghsaWEB
- www.openwall.com/lists/oss-security/2025/09/24/10ghsaWEB
- zookeeper.apache.org/doc/current/zookeeperSnapshotAndRestore.htmlghsaWEB
- zookeeper.apache.org/doc/r3.9.4/releasenotes.htmlghsaWEB
- zookeeper.apache.org/security.htmlghsaWEB
News mentions
0No linked articles in our index yet.