Miggo Logo
Miggo Vulnerability Database
CVE-2022-32531

CVE-2022-32531: Apache Bookkeeper vulnerable to Improper Certificate Validation

5.9

CVSS Score
3.1

Basic Information

CVE ID
CVE-2022-32531
GHSA ID
GHSA-gxq5-79m2-gvvq
EPSS Score
0.32798%
CWE
CWE-295
Published
12/15/2022
Updated
11/7/2023
KEV Status
No
Technology
TechnologyJava

Technical Details

CVSS Vector
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N
Package NameEcosystemVulnerable VersionsFirst Patched Version
org.apache.bookkeeper:bookkeeper-commonmaven< 4.14.64.14.6
org.apache.bookkeeper:bookkeeper-commonmaven= 4.15.04.15.1

Vulnerability Intelligence
Miggo AIMiggo AI

Miggo AIRoot Cause Analysis:
In progress

WAF Protection Rules

WAF Rule

T** *p**** *ookk**p*r J*v* *li*nt (***or* *.**.* *n* *lso *.**.*) *o*s not *los* t** *onn**tion to t** *ookk**p*r s*rv*r w**n TLS *ostn*m* v*ri*i**tion **ils. T*is l**v*s t** *ookk**p*r *li*nt vuln*r**l* to * m*n in t** mi**l* *tt**k. T** pro*l*m ***

Reasoning

No *n*lysis *v*il**l*