VDB
CVE-2026-24281
CVE-2026-24281
PUBLISHED
Apache ZooKeeper: Reverse-DNS fallback enables hostname verification bypass in ZooKeeper ZKTrustManager
EPSS 0.03% · 9.1th percentile
Risk Scores
EPSS Score
0.03%
9.1th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Bitnami | zookeeper | 3.8.0, 3.9.0, 3.8.0 |
Exploit Intelligence
- CIRCL seen: CVE-2026-24308 (circl-sighting)
- CIRCL seen: CVE-2026-24308 (circl-sighting)
- http://www.openwall.com/lists/oss-security/2026/03/07/5 (circl)
- https://lists.apache.org/thread/qng3rtzv2pqkmko4rhv85jfplkyrgqdr (circl)
- CIRCL seen: CVE-2026-24281 (circl-sighting)
- CIRCL seen: CVE-2026-24281 (circl-sighting)
- CIRCL seen: CVE-2026-24281 (circl-sighting)
- http://www.openwall.com/lists/oss-security/2026/03/07/4 (circl)
- https://lists.apache.org/thread/088ddsbrzhd5lxzbqf5n24yg0mwh9jt2 (circl)
- CIRCL seen: CVE-2026-24308 (circl-sighting)
…and 23 more exploits
Timeline
- Mar 7, 2026 CVE Published
- Mar 7, 2026 EPSS Score
- Mar 7, 2026 PoC Published
- Mar 7, 2026 PoC Published
- Mar 7, 2026 PoC Published
- Mar 7, 2026 PoC Published
- Mar 7, 2026 PoC Published
- Mar 7, 2026 PoC Published
- Mar 8, 2026 EPSS Score
- Mar 9, 2026 PoC Published
- Mar 9, 2026 EPSS Score
- Mar 10, 2026 CVE Updated