Lucene search
K

22 matches found

RedHat Linux
RedHat Linux
added 2026/05/20 8:47 p.m.14 views

Apache Camel: org.apache.camel: Apache Camel: Remote Code Execution and Arbitrary File Write via case-variant header injection

A flaw was found in Apache Camel. A remote attacker with Java Message Service JMS producer access could exploit a vulnerability in how certain header filter strategies process case-variant internal headers. This discrepancy, where filtering is case-sensitive but header processing is not, allows f...

9.9CVSS6.4AI score0.0086EPSS
Exploits1References5
RedHat Linux
RedHat Linux
added 2026/05/14 4:55 p.m.18 views

Apache Camel: org.apache.camel: Apache Camel: Remote Code Execution and Arbitrary File Write via case-variant header injection

A flaw was found in Apache Camel. A remote attacker with Java Message Service JMS producer access could exploit a vulnerability in how certain header filter strategies process case-variant internal headers. This discrepancy, where filtering is case-sensitive but header processing is not, allows f...

9.9CVSS6.4AI score0.0086EPSS
Exploits1References5
OSV
OSV
added 2026/04/27 9:34 a.m.9 views

GHSA-JG2M-9X48-3GVJ Apache Camel has an incomplete fix for CVE-2025-27636

The fix for CVE-2025-27636 added setLowerCasetrue to HttpHeaderFilterStrategy so that case-variant header names such as 'CAmelExecCommandExecutable' are filtered out alongside 'CamelExecCommandExecutable'. The same setLowerCasetrue call was not applied to five non-HTTP HeaderFilterStrategy...

9.9CVSS6.5AI score0.0086EPSS
Exploits1References10
Github Security Blog
Github Security Blog
added 2026/04/27 9:34 a.m.13 views

Apache Camel has an incomplete fix for CVE-2025-27636

The fix for CVE-2025-27636 added setLowerCasetrue to HttpHeaderFilterStrategy so that case-variant header names such as 'CAmelExecCommandExecutable' are filtered out alongside 'CamelExecCommandExecutable'. The same setLowerCasetrue call was not applied to five non-HTTP HeaderFilterStrategy...

9.9CVSS7.7AI score0.79817EPSS
Exploits4References10Affected Software4
NVD
NVD
added 2026/04/27 9:16 a.m.15 views

CVE-2026-40453

The fix for CVE-2025-27636 added setLowerCasetrue to HttpHeaderFilterStrategy so that case-variant header names such as 'CAmelExecCommandExecutable' are filtered out alongside 'CamelExecCommandExecutable'. The same setLowerCasetrue call was not applied to five non-HTTP HeaderFilterStrategy...

9.9CVSS0.0086EPSS
Exploits1References6
CVE
CVE
added 2026/04/27 8:23 a.m.99 views

CVE-2026-40453

Apache Camel non-HTTP HeaderFilterStrategies (camel-jms, camel-sjms, camel-coap, camel-google-pubsub) are affected by an incomplete fix for CVE-2025-27636. The fix added setLowerCase(true) to HttpHeaderFilterStrategy, but five non-HTTP implementations still use case-sensitive header filtering, wh...

9.9CVSS6.5AI score0.0086EPSS
Exploits1References6Affected Software1
Cvelist
Cvelist
added 2026/04/27 8:23 a.m.43 views

CVE-2026-40453 Apache Camel JMS, Apache Camel CoAP, Apache Camel Google PubSub: Incomplete fix for CVE-2025-27636 in non-HTTP HeaderFilterStrategies (camel-jms, camel-sjms, camel-coap, camel-google-pubsub) allows case-variant header injection

The fix for CVE-2025-27636 added setLowerCasetrue to HttpHeaderFilterStrategy so that case-variant header names such as 'CAmelExecCommandExecutable' are filtered out alongside 'CamelExecCommandExecutable'. The same setLowerCasetrue call was not applied to five non-HTTP HeaderFilterStrategy...

0.0086EPSS
Exploits1References1
SUSE CVE
SUSE CVE
added 2026/04/11 9:27 a.m.6 views

SUSE CVE-2026-1525

Undici allows duplicate HTTP Content-Length headers when they are provided in an array with case-variant names e.g., Content-Length and content-length. This produces malformed HTTP/1.1 requests with multiple conflicting Content-Length values on the wire. Who is impacted: Applications using...

9.8CVSS7.1AI score0.00493EPSS
Exploits0References6
Snyk
Snyk
added 2026/04/03 10:21 p.m.6 views

Improper Handling of Case Sensitivity

Overview prompts.chat is a Developer toolkit for AI prompts - build, validate, parse, and connect to prompts.chat Affected versions of this package are vulnerable to Improper Handling of Case Sensitivity due to inconsistent case-sensitive and case-insensitive handling of usernames across write an...

8.6CVSS5.8AI score0.00332EPSS
Exploits1References2
NVD
NVD
added 2026/04/03 9:17 p.m.4 views

CVE-2026-22665

prompts.chat prior to commit 1464475, contains an identity confusion vulnerability due to inconsistent case-sensitive and case-insensitive handling of usernames across write and read paths, allowing attackers to create case-variant usernames that bypass uniqueness checks. Attackers can exploit...

8.6CVSS0.00332EPSS
Exploits1References3
CVE
CVE
added 2026/04/03 8:28 p.m.15 views

CVE-2026-22665

CVE-2026-22665 affects prompts.chat prior to commit 1464475. The root cause is inconsistent handling of usernames across write and read paths, mixing case-sensitive and case-insensitive comparisons. This identity confusion allows creation of case-variant usernames that bypass uniqueness checks, e...

8.6CVSS5.2AI score0.00332EPSS
Exploits1References3Affected Software1
Positive Technologies
Positive Technologies
added 2026/04/03 12:0 a.m.4 views

PT-2026-30229

Name of the Vulnerable Software and Affected Versions prompts.chat versions prior to commit 1464475 Description prompts.chat is susceptible to an identity confusion issue stemming from inconsistent case sensitivity in username handling during write and read operations. This allows attackers to...

8.6CVSS5.9AI score0.00332EPSS
Exploits1References6
OSV
OSV
added 2026/03/13 8:7 p.m.3 views

GHSA-2MJP-6Q6P-2QXM Undici has an HTTP Request/Response Smuggling issue

Impact Undici allows duplicate HTTP Content-Length headers when they are provided in an array with case-variant names e.g., Content-Length and content-length. This produces malformed HTTP/1.1 requests with multiple conflicting Content-Length values on the wire. Who is impacted: - Applications usi...

6.5CVSS5.8AI score0.00493EPSS
Exploits0References7
EUVD
EUVD
added 2026/03/13 8:7 p.m.3 views

EUVD-2026-11685

Undici has an HTTP Request/Response Smuggling issue...

6.5CVSS5.8AI score0.00493EPSS
Exploits0References6
NVD
NVD
added 2026/03/12 8:16 p.m.6 views

CVE-2026-1525

Undici allows duplicate HTTP Content-Length headers when they are provided in an array with case-variant names e.g., Content-Length and content-length. This produces malformed HTTP/1.1 requests with multiple conflicting Content-Length values on the wire. Who is impacted: Applications...

9.8CVSS0.00493EPSS
Exploits0References5
OSV
OSV
added 2026/03/12 8:16 p.m.2 views

DEBIAN-CVE-2026-1525

Undici allows duplicate HTTP Content-Length headers when they are provided in an array with case-variant names e.g., Content-Length and content-length. This produces malformed HTTP/1.1 requests with multiple conflicting Content-Length values on the wire. Who is impacted: Applications...

9.8CVSS7.2AI score0.00493EPSS
Exploits0References1
OSV
OSV
added 2026/03/12 8:16 p.m.3 views

UBUNTU-CVE-2026-1525

Undici allows duplicate HTTP Content-Length headers when they are provided in an array with case-variant names e.g., Content-Length and content-length. This produces malformed HTTP/1.1 requests with multiple conflicting Content-Length values on the wire. Who is impacted: Applications...

9.8CVSS5.8AI score0.00493EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/03/12 7:56 p.m.26 views

CVE-2026-1525 undici is vulnerable to Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling')

Undici allows duplicate HTTP Content-Length headers when they are provided in an array with case-variant names e.g., Content-Length and content-length. This produces malformed HTTP/1.1 requests with multiple conflicting Content-Length values on the wire. Who is impacted: Applications...

6.5CVSS0.00493EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2026/03/12 7:56 p.m.8 views

CVE-2026-1525

Undici allows duplicate HTTP Content-Length headers when they are provided in an array with case-variant names e.g., Content-Length and content-length. This produces malformed HTTP/1.1 requests with multiple conflicting Content-Length values on the wire. Who is impacted: Applications...

6.5CVSS5.8AI score0.00493EPSS
Exploits0References6
Debian CVE
Debian CVE
added 2026/03/12 7:56 p.m.10 views

CVE-2026-1525

Undici allows duplicate HTTP Content-Length headers when they are provided in an array with case-variant names e.g., Content-Length and content-length. This produces malformed HTTP/1.1 requests with multiple conflicting Content-Length values on the wire. Who is impacted: Applications...

9.8CVSS7.2AI score0.00493EPSS
Exploits0
Rows per page
Query Builder