3 matches found
com.cibuddy:karaf.assembly (=1.0.0), com.kagurabi.services:kagura-assembly (>=1.5 <=1.9) +23 more potentially affected by CVE-2014-0219 via org.apache.karaf:apache-karaf (>=2.0.0 <=4.0.1)
org.apache.karaf:apache-karaf MAVEN version =2.0.0, =1.5, =1.5.6, =4.4.1, =1.1.2, =2.0.0, =2.0.6, =2.7.7, =3.0.0, =1.6.1-incubating, =1.6.1-incubating, =2.2.3, =2.0.0, =2.0.0, =2.2.11 and more Source cves: CVE-2014-0219 Source advisory: OSV:GHSA-M6G3-XQ5Q-4HG9...
CVE-2014-0219
Apache Karaf before 4.0.10 enables a shutdown port on the loopback interface, which allows local users to cause a denial of service shutdown by sending a shutdown command to all listening high ports...
CVE-2014-0219
Apache Karaf before 4.0.10 is affected by CVE-2014-0219. The issue allows local users to trigger a denial of service by sending a shutdown command to the shutdown port exposed on the loopback interface, targeting all listening high ports. The vulnerability stems from a misconfigured shutdown port...