3 matches found
CVE-2026-46456
In CVE-2026-46456, the Apache Camel AWS2-SQS component fails to apply an inbound header filter, allowing a sender to inject Camel control headers into the Exchange via unfiltered inbound SQS message attributes. This enables manipulation of downstream producers (e.g., HTTP redirection, filename ch...
Malicious code in Be.Vlaanderen.Bаsisregisters.MessageHandling.AwsSqs.Sіmple (NuGet)
--- -= Per source details. Do not edit below this line.=-...
CVE-2023-28937
DataSpider Servista version 4.4 and earlier uses a hard-coded cryptographic key. DataSpider Servista is data integration software. ScriptRunner and ScriptRunner for Amazon SQS are used to start the configured processes on DataSpider Servista. The cryptographic key is embedded in ScriptRunner and...