Lucene search
K

13 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2025/06/27 9:42 a.m.10 views

Security Bulletin: IBM Spectrum Control is vulnerable to weaknesses related to Camel-core (CVE-2020-11971)

Summary Rebind Flaw vulnerability in Camel-core may affect IBM Spectrum Control. CVE-2020-11971. Vulnerability Details CVEID:CVE-2020-11971 DESCRIPTION: Apache Camel's JMX is vulnerable to Rebind Flaw. Apache Camel 2.22.x, 2.23.x, 2.24.x, 2.25.x, 3.0.0 up to 3.1.0 is affected. Users should upgrad...

7.5CVSS8.1AI score0.14331EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2022/12/30 5:31 p.m.33 views

Security Bulletin: Apache Camel Core vulnerability in IBM Tivoli Monitoring Data Provider (CVE-2020-11971)

Summary IBM Tivoli Monitoring Data provider is vulnerable to Apache Camel Core vulnerabilty CVE-2020-11971 Vulnerability Details CVEID:CVE-2020-11971 DESCRIPTION: Apache Camel could allow a remote attacker to obtain sensitive information, caused by a rebind flaw in JMX. By sending a...

7.5CVSS8.1AI score0.14331EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2022/10/06 5:3 a.m.39 views

Security Bulletin: A security vulnerability has been identified in Apache Camel shipped with IBM Tivoli Netcool Impact (CVE-2020-11971)

Summary Apache Camel is shipped with IBM Tivoli Netcool Impact as part of its backend infrastructure. Information about a security vulnerability affecting Apache Camel has been published in a security bulletin. Vulnerability Details CVEID:CVE-2020-11971 DESCRIPTION: Apache Camel could allow a...

7.5CVSS8.2AI score0.14331EPSS
Exploits0Affected Software1
vulnersOsv
vulnersOsv
added 2021/05/21 7:20 p.m.5 views

de.ikor.sip.foundation:sip-integration-starter (>=2.0.0 <=3.1.0), de.ikor.sip.foundation:sip-starter-parent (>=3.0.0 <=3.1.0) +695 more potentially affected by CVE-2020-11971 via org.apache.camel:camel-management (>=3.0.0-RC2 <=3.22.4)

org.apache.camel:camel-management MAVEN version =3.0.0-RC2, =2.0.0, =3.0.0, =1.3.0, =1.3.0, =1.3.0, =3.0-M6, =3.0-M7, =2.13.6, =2.15.1, =3.0-M7, =2.17.1, =3.0-M8 and more Source cves: CVE-2020-11971 Source advisory: OSV:GHSA-HFG5-XPVW-C9X4...

7.5CVSS6.7AI score0.14331EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2021/05/21 7:20 p.m.8 views

at.researchstudio.sat:won-core (>=0.2 <=0.9), at.researchstudio.sat:won-cryptography (>=0.3 <=0.6) +3401 more potentially affected by CVE-2020-11971 via org.apache.camel:camel-core (>=1.0.0 <=3.22.4)

org.apache.camel:camel-core MAVEN version =1.0.0, =0.2, =0.3, =0.2, =0.2, =0.3, =0.3, =0.3, =0.3, =0.3, =0.2, =0.3, =0.3, =0.4, =0.9 and more Source cves: CVE-2020-11971 Source advisory: OSV:GHSA-HFG5-XPVW-C9X4...

7.5CVSS6.7AI score0.14331EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2020/12/16 12:11 p.m.179 views

Important: Red Hat Security Advisory: Red Hat Fuse 7.8.0 release and security update

A minor version update from 7.7 to 7.8 is now available for Red Hat Fuse. The purpose of this text-only errata is to inform you about the security issues fixed in this release. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring...

9.8CVSS8AI score0.95586EPSS
Exploits12References39
IBM Security Bulletins
IBM Security Bulletins
added 2020/08/11 2:33 p.m.32 views

Security Bulletin: Vulnerabilities in Apache Camel's JMX, Apache Camel RabbitMQ and Apache Camel Netty affects IBM Operations Analytics Predictive Insights (CVE-2020-11971, CVE-2020-11972, CVE-2020-11973)

Summary Apache Camel's JMX, Apache Camel RabbitMQ and Apache Camel Netty are used by IBM Operations Analytics Predictive Insights. IBM Operations Analytics Predictive Insights has addressed the applicable CVEs. See Remediation/Fixes section to apply the recommended fixes. Vulnerability Details...

9.8CVSS2AI score0.14331EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2020/07/16 5:5 a.m.41 views

Security Bulletin: Multiple vulnerabilities have been identified in Apache Camel shipped with IBM Netcool/OMNIbus Probe DSL Factory Framework

Summary Apache Camel is a dependency component shipped with the IBM Netcool/OMNIbus Probe DSL Factory Framework. Information about the security vulnerabilities affecting Apache Camel has been published. CVE-2020-11971, CVE-2020-11973, CVE-2020-11972 Vulnerability Details CVEID: CVE-2020-11971...

9.8CVSS1.4AI score0.14331EPSS
Exploits0Affected Software1
RedhatCVE
RedhatCVE
added 2020/06/18 11:25 a.m.40 views

CVE-2020-11971

Apache Camel's JMX is vulnerable to Rebind Flaw. Apache Camel 2.22.x, 2.23.x, 2.24.x, 2.25.x, 3.0.0 up to 3.1.0 is affected. Users should upgrade to 3.2.0. Mitigation The JMX instrumentation agent is the vulnerable component in this, if not being used it can be disabled in the following ways As a...

5CVSS2.1AI score0.14331EPSS
Exploits0References3
IBM Security Bulletins
IBM Security Bulletins
added 2020/06/15 6:0 a.m.36 views

Security Bulletin: IBM Jazz for Service Management is vulnerable to Apache Camel Core vulnerabilities

Summary IBM Jazz for Service Management is vulnerable to Apache Camel Core vulnerabilities CVE-2020-11971, CVE-2020-11973, CVE-2020-11972 Vulnerability Details CVEID: CVE-2020-11971 DESCRIPTION: Apache Camel could allow a remote attacker to obtain sensitive information, caused by a rebind flaw in...

9.8CVSS1.7AI score0.14331EPSS
Exploits0Affected Software1
OSV
OSV
added 2020/05/14 5:15 p.m.23 views

CVE-2020-11971

Apache Camel's JMX is vulnerable to Rebind Flaw. Apache Camel 2.22.x, 2.23.x, 2.24.x, 2.25.x, 3.0.0 up to 3.1.0 is affected. Users should upgrade to 3.2.0...

7.5CVSS6.4AI score0.14331EPSS
Exploits0References15
Cvelist
Cvelist
added 2020/05/14 4:18 p.m.26 views

CVE-2020-11971

Apache Camel's JMX is vulnerable to Rebind Flaw. Apache Camel 2.22.x, 2.23.x, 2.24.x, 2.25.x, 3.0.0 up to 3.1.0 is affected. Users should upgrade to 3.2.0...

8.3AI score0.14331EPSS
Exploits0References15
CVE
CVE
added 2020/05/14 4:18 p.m.168 views

CVE-2020-11971

CVE-2020-11971: Apache Camel JMX Rebind Flaw affects Camel versions 2.22.x–3.1.0. The JMX rebind vulnerability could allow a remote attacker to access sensitive information via crafted requests. A fix is available: upgrade to Camel 3.2.0 or newer. CVSS scores reported include v3.1 base 7.5 (HIGH)...

7.5CVSS8.1AI score0.14331EPSS
Exploits0References15Affected Software1
Rows per page
Query Builder