Nikita Markevich

**Name of the Vulnerable Software and Affected Versions** Google Cloud Apigee (affected versions not specified) **Description** A flaw in the `SetIntegrationRequest` policy allows remote attackers to perform Server-Side Request Forgery (SSRF), which is a technique where an attacker forces a server to make requests to an unintended location. This can lead to the exfiltration of service account access tokens. Successful exploitation requires an administrator to have initially established an insecure configuration of the API proxy. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Apache ZooKeeper versions prior to 3.8.6 Apache ZooKeeper versions prior to 3.9.5 **Description** A flaw exists in the hostname verification process within Apache ZooKeeper’s `ZKTrustManager`. When IP Subject Alternative Name (SAN) validation fails, the system incorrectly falls back to reverse DNS (PTR) record lookup. This allows attackers who control or manipulate PTR records to potentially impersonate ZooKeeper servers or clients, even when presenting a certificate trusted by the `ZKTrustManager`. Successful exploitation requires the attacker to possess a certificate that is already trusted by the system, making the attack more complex. **Recommendations** Upgrade to Apache ZooKeeper version 3.8.6. Upgrade to Apache ZooKeeper version 3.9.5.

**Name of the Vulnerable Software and Affected Versions** Google Apigee versions prior to Hybrid 1.11.2 Google Apigee versions prior to Hybrid 1.12.4 Google Apigee versions prior to Hybrid 1.13.3 Google Apigee versions prior to Hybrid 1.14.1 Google Apigee versions prior to OPDK 5202 Google Apigee versions prior to OPDK 5300 **Description** A security issue exists in the JavaCallout policy within Google Apigee. This allows for remote code execution by enabling a user to inject a malicious object into the MessageContext. This can lead to the execution of arbitrary Java code and system commands at runtime, potentially resulting in unauthorized data access and network lateral movement. The vulnerable component is the JavaCallout policy, accessible via the API endpoint `https://docs.apigee.com/api-platform/reference/policies/java-callout-policy`. The `MessageContext` is a vulnerable parameter. **Recommendations** Update to Google Apigee Hybrid version 1.11.2 or later. Update to Google Apigee Hybrid version 1.12.4 or later. Update to Google Apigee Hybrid version 1.13.3 or later. Update to Google Apigee Hybrid version 1.14.1 or later. Update to Google Apigee OPDK version 5202 or later. Update to Google Apigee OPDK version 5300 or later.