Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in

GHSA-2FW5-RVF2-JQ56 Apache Camel's XSLT component allows remote attackers to read arbitrary files

🗓️ 16 Oct 2018 23:13:26Reported by GoogleType 
osv
 osv🔗 osv.dev

Apache Camel XSLT component before 2.11.4 and before 2.12.3 is vulnerable to XML external entity that allows remote file read.

Related
Refs
ReporterTitlePublishedViews
Family
IBM Security Bulletins		Security Bulletin: Multiple vulnerabilities in Apache Camel core affect IBM Application Performance Management products
25 Sep 202309:06
ibm
IBM Security Bulletins		Security Bulletin: IBM Spectrum Control is vulnerable to multiple weaknesses related to Apache Camel
7 Mar 202305:15
ibm
Check Point Advisories		Apache Camel XSLT Component XML External Entity (CVE-2014-0002)
3 Apr 201400:00
checkpoint_advisories
Check Point Advisories		Multiple Products XML Public External Entity Information Disclosure (CVE-2013-3617; CVE-2013-4152; CVE-2013-6429; CVE-2014-0002; CVE-2014-0423)
29 Sep 201300:00
checkpoint_advisories
Check Point Advisories		Multiple Products XML System External Entity Information Disclosure (CVE-2013-3617; CVE-2013-4152; CVE-2013-6429; CVE-2014-0002; CVE-2014-0054; CVE-2014-0423)
29 Sep 201300:00
checkpoint_advisories
CVE		CVE-2014-0002
20 Mar 201419:00
cve
Cvelist		CVE-2014-0002
20 Mar 201419:00
cvelist
Github Security Blog		Apache Camel's XSLT component allows remote attackers to read arbitrary files
16 Oct 201823:13
github
NVD		CVE-2014-0002
21 Mar 201404:38
nvd
Prion		Xxe
21 Mar 201404:38
prion
Rows per page
SourceLink
nvdwww.nvd.nist.gov/vuln/detail/CVE-2014-0002
githubwww.github.com/apache/camel/commit/2ec54fa0c13ae65bdcccff764af081a79fcc05f
githubwww.github.com/apache/camel/commit/341d4e6cca71c53c90962d1c3d45fc9e05cc50c6
githubwww.github.com/apache/camel/commit/54b65c1d30848835f26bd138c0ba407bc1e560d
githubwww.github.com/apache/camel
issueswww.issues.apache.org/jira/browse/CAMEL-7129
listswww.lists.apache.org/thread.html/2318d7f7d87724d8716cd650c21b31cb06e4d34f6d0f5ee42f28fdaf%40%3Ccommits.camel.apache.org%3E
listswww.lists.apache.org/thread.html/2318d7f7d87724d8716cd650c21b31cb06e4d34f6d0f5ee42f28fdaf@%3Ccommits.camel.apache.org%3E
listswww.lists.apache.org/thread.html/b4014ea7c5830ca1fc28edd5cafedfe93ad4af2d9e69c961c5def31d%40%3Ccommits.camel.apache.org%3E
listswww.lists.apache.org/thread.html/b4014ea7c5830ca1fc28edd5cafedfe93ad4af2d9e69c961c5def31d@%3Ccommits.camel.apache.org%3E
Rows per page

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

Book a live demo
06 Dec 2024 05:34Current
7.2High risk
Vulners AI Score7.2
CVSS 27.5
EPSS0.28739
apache camelxml external entityremote file readfile disclosurexml vulnerability
0