Lucene search
CVE-2018-11787
Prior to Karaf 3.0.9, Karaf 4.0.9, and Karaf 4.1.1, HTTP endpoints published by Karaf features may also be published under the HTTP web root, potentially leading to authentication bypass on published features. The Gogo shell provided by the webconsole feature is potentially accessible without authentication
Show more
| Reporter | Title | Published | Views | Family All 8 |
|---|---|---|---|---|
 | CVE-2018-11787 | 18 Sep 201814:29 | – | osv |
| Improper Authentication in Apache Karaf | 7 Jan 201919:14 | – | osv |
 | Unauthorized Access | 17 Mar 201701:15 | – | veracode |
 | CVE-2018-11787 | 18 Sep 201814:29 | – | cve |
 | CVE-2018-11787 | 18 Sep 201814:00 | – | cvelist |
 | Authentication flaw | 18 Sep 201814:29 | – | prion |
 | Improper Authentication in Apache Karaf | 7 Jan 201919:14 | – | github |
 | CVE-2018-11787 | 18 Sep 201814:29 | – | nvd |
| Source | Link |
|---|---|
| cve | www.cve.org/CVERecord |
| bugzilla | www.bugzilla.redhat.com/show_bug.cgi |
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo20 Sep 2018 09:20Current
1.7Low risk
Vulners AI Score1.7
EPSS0.00738