High severity vulnerability that affects org.apache.camel:camel-castor

2018-10-16T23:05:58
ID GHSA-VF4Q-8MR7-5C5C
Type github
Reporter GitHub Advisory Database
Modified 2019-07-03T21:02:04

Description

The camel-castor component in Apache Camel 2.x before 2.19.4 and 2.20.x before 2.20.1 is vulnerable to Java object de-serialisation vulnerability. De-serializing untrusted data can lead to security flaws.