All 10 CVE vulnerabilities found in Apache Karaf, with AI-generated Chinese analysis, references, and POCs.
Vendor: Apache Software Foundation
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2026-24656 | Apache Karaf: Decanter log-socket collector has deserialization vulnerability CWE-502 | 9.1AI | CriticalAI | 2026-01-26 |
| CVE-2022-40145 | Apache Karaf: JDBC JAAS LDAP injection CWE-74 | 9.8 | - | 2022-12-21 |
| CVE-2022-22932 | Path traversal flaws | - | - | 2022-01-26 |
| CVE-2021-41766 | Insecure Java Deserialization in Apache Karaf | 8.1 | - | 2022-01-26 |
| CVE-2020-11980 | Apache Karaf 代码问题漏洞 | 8.3 | - | 2020-06-12 |
| CVE-2019-0191 | Apache Karaf 路径遍历漏洞 | 7.3 | - | 2019-03-20 |
| CVE-2018-11788 | Apache Karaf 安全漏洞 | 9.8 | - | 2019-01-07 |
| CVE-2018-11786 | Apache Karaf 安全漏洞 | 8.1 | - | 2018-09-18 |
| CVE-2018-11787 | Apache Karaf 授权问题漏洞 | 9.1 | - | 2018-09-18 |
| CVE-2016-8750 | Apache Karaf 安全漏洞 | 6.5 | - | 2018-02-19 |
All 10 known CVE vulnerabilities affecting Apache Karaf with full Chinese analysis, references, and POCs where available.