Lucene search
ApacheCVE-2024-34365HistoryMay 14, 2024 - 3:38 p.m.
CVE-2024-34365
2024-05-1415:38:46
CWE-20
apache
web.nvd.nist.gov
15
cve-2024-34365
apache karaf cave
input validation
UNSUPPORTED WHEN ASSIGNED Improper Input Validation vulnerability in Apache Karaf Cave.This issue affects all versions of Apache Karaf Cave.
As this project is retired, we do not plan to release a version that fixes this issue. Users are recommended to find an alternative or restrict access to the instance to trusted users.NOTE: This vulnerability only affects products that are no longer supported by the maintainer.
CNA Affected
[
{
"collectionURL": "https://repo.maven.apache.org/maven2",
"defaultStatus": "unaffected",
"packageName": "org.apache.karaf:cave",
"product": "Apache Karaf Cave",
"vendor": "Apache Software Foundation",
"versions": [
{
"lessThanOrEqual": "*",
"status": "affected",
"version": "0",
"versionType": "semver"
}
]
}
]Related
cvelist
cvelist
CVE-2024-34365 Apache Karaf Cave: Cave SSRF and arbitrary file access
2024-05-09 06:49:05
osv
osv
Apache Karaf Cave: Cave SSRF and arbitrary file access
2024-05-14 18:30:50
github
github
Apache Karaf Cave: Cave SSRF and arbitrary file access
2024-05-14 18:30:50
veracode
veracode
Server-side Request Forgery
2024-05-15 10:47:37
nvd
nvd
CVE-2024-34365
2024-05-14 15:38:46
vulnrichment
vulnrichment
CVE-2024-34365 Apache Karaf Cave: Cave SSRF and arbitrary file access
2024-05-09 06:49:05