Lucene search
K

4 matches found

BDU FSTEC
BDU FSTEC
added 2019/12/03 12:0 a.m.6 views

The vulnerability of the JSON-lib library and the camel-xmljson component of the Java framework Apache Camel, which allows attackers to execute an XXE attack

The vulnerability of the JSON-lib library and the camel-xmljson component of the Java framework Apache Camel is related to an incorrect limitation on XML references to external objects. Exploiting this vulnerability could allow a malicious actor to perform an XXE attack remotely...

7.8CVSS6.7AI score0.08463EPSS
Exploits0References14Affected Software4
vulnersOsv
vulnersOsv
added 2019/05/29 6:15 p.m.6 views

com.easyinnova:dpf_manager (=3.0), net.osgiliath.features:net.osgiliath.feature.activemq (>=0.3.1 <=0.3.7) +69 more potentially affected by CVE-2019-0188 via org.apache.camel:camel-xmljson (>=2.12.1 <=2.23.4)

org.apache.camel:camel-xmljson MAVEN version =2.12.1, =0.3.1, =0.3.1, =0.3.1, =0.3.1, =0.2.0, =0.2.0, =0.2.0, =0.2.0, =0.2.0, =0.2.0, =0.2.0, =0.2.0, =0.2.0, =0.2.0, =0.2.3 and more Source cves: CVE-2019-0188 Source advisory: OSV:GHSA-H896-MX9X-G32Ghttps...

7.5CVSS6.8AI score0.08463EPSS
Exploits0
OSV
OSV
added 2019/05/29 6:15 p.m.1 views

GHSA-H896-MX9X-G32G XML External Entity injection in Apache Camel

Apache Camel prior to 2.24.0 contains an XML external entity injection XXE vulnerability CWE-611 due to using an outdated vulnerable JSON-lib library. This affects only the camel-xmljson component, which was removed...

7.5CVSS7.1AI score0.08463EPSS
Exploits0References18
OSV
OSV
added 2019/05/28 7:29 p.m.32 views

CVE-2019-0188

Apache Camel prior to 2.24.0 contains an XML external entity injection XXE vulnerability CWE-611 due to using an outdated vulnerable JSON-lib library. This affects only the camel-xmljson component, which was removed...

7.5CVSS7.6AI score0.08463EPSS
Exploits0References16
Rows per page
Query Builder