karaf is susceptible to denial of service (DoS) attacks. It does not prevent a local attacker from invoking the shutdown command to all listening high ports, leading to the karaf server shutting down.
CPE | Name | Operator | Version |
---|---|---|---|
apache karaf :: assemblies :: default distribution | le | 4.1.0 | |
apache karaf :: main | le | 4.0.9 |