153 matches found
CVE-2026-24656
Deserialization of Untrusted Data vulnerability in Apache Karaf Decanter. The Decanter log socket collector exposes the port 4560, without authentication. If the collector exposes allowed classes property, this configuration can be bypassed. It means that the log socket collector is vulnerable to...
CVE-2026-24656
Deserialization of Untrusted Data vulnerability in Apache Karaf Decanter. The Decanter log socket collector exposes the port 4560, without authentication. If the collector exposes allowed classes property, this configuration can be bypassed. It means that the log socket collector is vulnerable to...
CVE-2026-24656
Deserialization of Untrusted Data vulnerability in Apache Karaf Decanter. The Decanter log socket collector exposes the port 4560, without authentication. If the collector exposes allowed classes property, this configuration can be bypassed. It means that the log socket collector is vulnerable to...
CVE-2026-24656
Deserialization of Untrusted Data vulnerability in Apache Karaf Decanter. The Decanter log socket collector exposes the port 4560, without authentication. If the collector exposes allowed classes property, this configuration can be bypassed. It means that the log socket collector is vulnerable to...
CVE-2026-24656 Apache Karaf: Decanter log-socket collector has deserialization vulnerability
Deserialization of Untrusted Data vulnerability in Apache Karaf Decanter. The Decanter log socket collector exposes the port 4560, without authentication. If the collector exposes allowed classes property, this configuration can be bypassed. It means that the log socket collector is vulnerable to...
Apache Karaf Decanter security vulnerability
Apache Karaf Decanter is a monitoring and alerting module of the Apache Foundation. Versions of Apache Karaf Decanter prior to 2.12.0 contained a security vulnerability, which stemmed from the log socket collector’s inability to deserialize trusted data, potentially leading to denial-of-service...
PT-2026-4647
Name of the Vulnerable Software and Affected Versions Apache Karaf Decanter versions prior to 2.12.0 Description The Decanter log socket collector in Apache Karaf has a deserialization issue. The collector operates on port 4560 without authentication. If the allowed classes property is exposed, i...
CVE-2024-34365
UNSUPPORTED WHEN ASSIGNED Improper Input Validation vulnerability in Apache Karaf Cave.This issue affects all versions of Apache Karaf Cave. As this project is retired, we do not plan to release a version that fixes this issue. Users are recommended to find an alternative or restrict access to th...
EUVD-2019-0184
Malware in sbrugna...
EUVD-2018-0805
Malware in sbrugna...
EUVD-2016-4181
Malware in sbrugna...
EUVD-2019-0374
Malware in sbrugna...
EUVD-2019-0185
Malware in sbrugna...
EUVD-2022-0940
Malicious code in bioql PyPI...
EUVD-2022-7591
Malicious code in bioql PyPI...
EUVD-2024-1376
Malicious code in bioql PyPI...
EUVD-2022-0628
Malicious code in bioql PyPI...
EUVD-2022-3800
Malicious code in bioql PyPI...
EUVD-2022-4505
Malicious code in bioql PyPI...
EUVD-2022-0454
Malicious code in bioql PyPI...