How severe is CVE-2024-34365?

CVE-2024-34365 has a CVSS v3 score of 9.1 (CRITICAL).

CVE-2024-34365

Name: karaf_cave
Author: apache

9.1CRITICAL

UNSUPPORTED WHEN ASSIGNED Improper Input Validation vulnerability in Apache Karaf Cave.This issue affects all versions of Apache Karaf Cave. As this project is retired, we do not plan to releas

Publicado: 5/14/2024Atualizado: 7/10/2025

Descrição

** UNSUPPORTED WHEN ASSIGNED ** Improper Input Validation vulnerability in Apache Karaf Cave.This issue affects all versions of Apache Karaf Cave. As this project is retired, we do not plan to release a version that fixes this issue. Users are recommended to find an alternative or restrict access to the instance to trusted users.NOTE: This vulnerability only affects products that are no longer supported by the maintainer.

Análise IADesenvolvido por IA

Produtos Afetados

apachekaraf_cave

Referências

http://www.openwall.com/lists/oss-security/2024/05/09/5
Mailing ListThird Party Advisory
https://karaf.apache.org/security/cve-2024-34365.txt
Mailing ListVendor Advisory
http://www.openwall.com/lists/oss-security/2024/05/09/5
Mailing ListThird Party Advisory
https://karaf.apache.org/security/cve-2024-34365.txt
Mailing ListVendor Advisory