** UNSUPPORTED WHEN ASSIGNED ** Improper Input Validation vulnerability in Apache Karaf Cave.This issue affects all versions of Apache Karaf Cave.
As this project is retired, we do not plan to release a version that fixes this issue. Users are recommended to find an alternative or restrict access to the instance to trusted users.NOTE: This vulnerability only affects products that are no longer supported by the maintainer.
References
Link | Resource |
---|---|
http://www.openwall.com/lists/oss-security/2024/05/09/5 | Mailing List Third Party Advisory |
https://karaf.apache.org/security/cve-2024-34365.txt | Vendor Advisory Mailing List |
http://www.openwall.com/lists/oss-security/2024/05/09/5 | Mailing List Third Party Advisory |
https://karaf.apache.org/security/cve-2024-34365.txt | Vendor Advisory Mailing List |
Configurations
History
10 Jul 2025, 16:28
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:a:apache:karaf_cave:*:*:*:*:*:*:*:* | |
References | () http://www.openwall.com/lists/oss-security/2024/05/09/5 - Mailing List, Third Party Advisory | |
References | () https://karaf.apache.org/security/cve-2024-34365.txt - Vendor Advisory, Mailing List | |
First Time |
Apache
Apache karaf Cave |
|
CWE | NVD-CWE-noinfo |
13 Feb 2025, 18:18
Type | Values Removed | Values Added |
---|---|---|
Summary | (en) ** UNSUPPORTED WHEN ASSIGNED ** Improper Input Validation vulnerability in Apache Karaf Cave.This issue affects all versions of Apache Karaf Cave. As this project is retired, we do not plan to release a version that fixes this issue. Users are recommended to find an alternative or restrict access to the instance to trusted users.NOTE: This vulnerability only affects products that are no longer supported by the maintainer. |
21 Nov 2024, 09:18
Type | Values Removed | Values Added |
---|---|---|
References | () http://www.openwall.com/lists/oss-security/2024/05/09/5 - | |
References | () https://karaf.apache.org/security/cve-2024-34365.txt - |
20 Nov 2024, 17:35
Type | Values Removed | Values Added |
---|---|---|
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 9.1 |
10 Jun 2024, 17:16
Type | Values Removed | Values Added |
---|---|---|
References |
|
17 May 2024, 02:39
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2024-05-14 15:38
Updated : 2025-07-10 16:28
NVD link : CVE-2024-34365
Mitre link : CVE-2024-34365
CVE.ORG link : CVE-2024-34365
JSON object : View
Products Affected
apache
- karaf_cave
CWE