Lucene search

K
osvGoogleOSV:CVE-2019-0188
HistoryMay 28, 2019 - 7:29 p.m.

CVE-2019-0188

2019-05-2819:29:02
Google
osv.dev
6

0.004 Low

EPSS

Percentile

74.7%

Apache Camel prior to 2.24.0 contains an XML external entity injection (XXE) vulnerability (CWE-611) due to using an outdated vulnerable JSON-lib library. This affects only the camel-xmljson component, which was removed.

CPENameOperatorVersion
cameleqcamel-2.15.0
cameleqcamel-2.16.0

References

0.004 Low

EPSS

Percentile

74.7%