Maven package
org.apache.karaf.decanter.collector/org.apache.karaf.decanter.collector.log.socket
pkg:maven/org.apache.karaf.decanter.collector/org.apache.karaf.decanter.collector.log.socket
Vulnerabilities (1)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2026-24656 | — | < 2.12.0 | 2.12.0 | Jan 26, 2026 | Deserialization of Untrusted Data vulnerability in Apache Karaf Decanter. The Decanter log socket collector exposes the port 4560, without authentication. If the collector exposes allowed classes property, this configuration can be bypassed. It means that the log socket collect |
- CVE-2026-24656Jan 26, 2026affected < 2.12.0fixed 2.12.0
Deserialization of Untrusted Data vulnerability in Apache Karaf Decanter. The Decanter log socket collector exposes the port 4560, without authentication. If the collector exposes allowed classes property, this configuration can be bypassed. It means that the log socket collect