com.easyinnova:dpf_manager (=3.0), net.osgiliath.features:net.osgiliath.feature.activemq (>=0.3.1 <=0.3.7) +69 more potentially affected by CVE-2019-0188 via org.apache.camel:camel-xmljson (>=2.12.1 <=2.23.4)

org.apache.camel:camel-xmljson MAVEN version =2.12.1, =0.3.1, =0.3.1, =0.3.1, =0.3.1, =0.2.0, =0.2.0, =0.2.0, =0.2.0, =0.2.0, =0.2.0, =0.2.0, =0.2.0, =0.2.0, =0.2.0, =0.2.3 and more Source cves: CVE-2019-0188 Source advisory: OSV:GHSA-H896-MX9X-G32Ghttps...

GHSA-H896-MX9X-G32G XML External Entity injection in Apache Camel

Apache Camel prior to 2.24.0 contains an XML external entity injection XXE vulnerability CWE-611 due to using an outdated vulnerable JSON-lib library. This affects only the camel-xmljson component, which was removed...

CVE-2019-0188

Apache Camel prior to 2.24.0 contains an XML external entity injection XXE vulnerability CWE-611 due to using an outdated vulnerable JSON-lib library. This affects only the camel-xmljson component, which was removed...