8 matches found
EUVD-2026-41835
Improper Neutralization of Special Elements in Data Query Logic vulnerability in Apache Camel Neo4J component. The camel-neo4j producer builds the Cypher WHERE clause for its match/retrieve and delete operations from the CamelNeo4jMatchProperties map. CVE-2025-66169 addressed Cypher injection...
CVE-2025-66169
A flaw was found in the Apache Camel camel-neo4j component. A remote attacker can exploit this Cypher Injection vulnerability to perform unauthorized data modification or execute arbitrary database queries. This could lead to a compromise of data integrity within the Neo4j database...
org.apache.camel.karaf:camel-neo4j (>=4.10.3 <=4.10.7), org.apache.camel.springboot:camel-neo4j-starter (>=4.10.0 <=4.10.7) potentially affected by CVE-2025-66169 via org.apache.camel:camel-neo4j (>=4.10.0 <=4.10.7)
org.apache.camel:camel-neo4j MAVEN version =4.10.0, =4.10.3, =4.10.0, =4.10.7 Source cves: CVE-2025-66169 Source advisory: SNYK:JAVA-ORGAPACHECAMEL-14930769...
org.apache.camel.springboot:camel-neo4j-starter (>=4.14.0 <=4.14.2) potentially affected by CVE-2025-66169 via org.apache.camel:camel-neo4j (>=4.14.0 <=4.14.2)
org.apache.camel:camel-neo4j MAVEN version =4.14.0, =4.14.0, =4.14.2 Source cves: CVE-2025-66169 Source advisory: SNYK:JAVA-ORGAPACHECAMEL-14930769...
org.apache.camel.springboot:camel-neo4j-starter (>=4.14.0 <=4.14.2) potentially affected by CVE-2025-66169 via org.apache.camel:camel-neo4j (>=4.14.0 <=4.14.2)
org.apache.camel:camel-neo4j MAVEN version =4.14.0, =4.14.0, =4.14.2 Source cves: CVE-2025-66169 Source advisory: OSV:GHSA-4JRW-64VR-7G8M...
org.apache.camel.karaf:camel-neo4j (>=4.10.3 <=4.10.7), org.apache.camel.springboot:camel-neo4j-starter (>=4.10.0 <=4.10.7) potentially affected by CVE-2025-66169 via org.apache.camel:camel-neo4j (>=4.10.0 <=4.10.7)
org.apache.camel:camel-neo4j MAVEN version =4.10.0, =4.10.3, =4.10.0, =4.10.7 Source cves: CVE-2025-66169 Source advisory: OSV:GHSA-4JRW-64VR-7G8M...
org.apache.camel.springboot:camel-neo4j-starter (>=4.15.0 <=4.16.0) potentially affected by CVE-2025-66169 via org.apache.camel:camel-neo4j (>=4.15.0 <=4.16.0)
org.apache.camel:camel-neo4j MAVEN version =4.15.0, =4.15.0, =4.16.0 Source cves: CVE-2025-66169 Source advisory: OSV:GHSA-4JRW-64VR-7G8M...
CVE-2025-66169
Cypher Injection vulnerability in Apache Camel camel-neo4j component. This issue affects Apache Camel: from 4.10.0 before 4.10.8, from 4.14.0 before 4.14.3, from 4.15.0 before 4.17.0 Users are recommended to upgrade to version 4.10.8 for 4.10.x LTS and 4.14.3 for 4.14.x LTS and 4.17.0...