3 matches found
org.apache.camel:camel-mail-starter (=2.22.0), org.nhind:direct-msg-monitor (>=6.0 <=8.1.0) +3 more potentially affected by CVE-2018-8041 via org.apache.camel:camel-mail (=2.22.0)
org.apache.camel:camel-mail MAVEN version =2.22.0 is affected by a known vulnerability. The following packages have a transitive dependency on org.apache.camel:camel-mail and may be impacted: - org.apache.camel:camel-mail-starter =2.22.0 - org.nhind:direct-msg-monitor =6.0, =6.0, =6.0, =8.1.0 -...
org.apache.camel:camel-mail-starter (>=2.20.0 <=2.20.3), org.wildfly.camel.example:example-camel-mail (>=5.0.0 <=5.1.0) potentially affected by CVE-2018-8041 via org.apache.camel:camel-mail (>=2.20.0 <=2.20.3)
org.apache.camel:camel-mail MAVEN version =2.20.0, =2.20.0, =5.0.0, =5.1.0 Source cves: CVE-2018-8041 Source advisory: OSV:GHSA-JV74-F9PJ-XP3F...
CVE-2018-8041
CVE-2018-8041 affects Apache Camel’s Mail component. Versions 2.20.0–2.20.3, 2.21.0–2.21.1, and 2.22.0 are vulnerable to a path traversal issue that can allow viewing arbitrary files via a crafted URL request. Root cause and exact exploit details are not provided in the supplied documents beyond ...