11 matches found
com.scoperetail.fusion:fusion-connect (>=0.57 <=0.79), com.scoperetail.fusion:fusion-connect-core (>=0.21 <=0.58) +11 more potentially affected by CVE-2020-11972 via org.apache.camel:camel-rabbitmq (>=3.0.0 <=3.22.4)
org.apache.camel:camel-rabbitmq MAVEN version =3.0.0, =0.57, =0.21, =0.5, =0.1.0, =1.0.0, =0.10.1, =0.10.1, =2.0.0, =1.0.0-M6, =1.0.0-M6, =3.0.0, =3.22.4 - org.springframework.cloud:spring-cloud-contract-sample-camel =4.1.6 Source cves: CVE-2020-11972 Source advisory: OSV:GHSA-2X6R-7427-95CM...
io.fabric8.funktion.connector:connector-rabbitmq (>=1.1.9 <=1.1.55), io.github.koustavtub:snsmockjava_2.12 (>=0.4.1 <=0.4.1.0) +4 more potentially affected by CVE-2020-11972 via org.apache.camel:camel-rabbitmq (>=2.15.2 <=2.25.0)
org.apache.camel:camel-rabbitmq MAVEN version =2.15.2, =1.1.9, =0.4.1, =2.18.0, =1.0.0, =2.4.8, =2.5.4 Source cves: CVE-2020-11972 Source advisory: OSV:GHSA-2X6R-7427-95CM...
Important: Red Hat Security Advisory: Red Hat Fuse 7.8.0 release and security update
A minor version update from 7.7 to 7.8 is now available for Red Hat Fuse. The purpose of this text-only errata is to inform you about the security issues fixed in this release. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring...
Security Bulletin:IBM Resilient SOAR is Using Components with Known Vulnerabilities - Apache Camel ( CVE-2019-0188, CVE-2020-11972, CVE-2020-11973)
Summary IBM Resilient SOAR is using Apache Camel that has known vulnerabilities, as described below. Vulnerability Details CVEID: CVE-2019-0188 DESCRIPTION: Apache Camel could allow a remote attacker to obtain sensitive information, caused by improper handling of XML external entity XXE...
Security Bulletin: Vulnerabilities in Apache Camel's JMX, Apache Camel RabbitMQ and Apache Camel Netty affects IBM Operations Analytics Predictive Insights (CVE-2020-11971, CVE-2020-11972, CVE-2020-11973)
Summary Apache Camel's JMX, Apache Camel RabbitMQ and Apache Camel Netty are used by IBM Operations Analytics Predictive Insights. IBM Operations Analytics Predictive Insights has addressed the applicable CVEs. See Remediation/Fixes section to apply the recommended fixes. Vulnerability Details...
Security Bulletin: Multiple vulnerabilities have been identified in Apache Camel shipped with IBM Netcool/OMNIbus Probe DSL Factory Framework
Summary Apache Camel is a dependency component shipped with the IBM Netcool/OMNIbus Probe DSL Factory Framework. Information about the security vulnerabilities affecting Apache Camel has been published. CVE-2020-11971, CVE-2020-11973, CVE-2020-11972 Vulnerability Details CVEID: CVE-2020-11971...
Security Bulletin: IBM Jazz for Service Management is vulnerable to Apache Camel Core vulnerabilities
Summary IBM Jazz for Service Management is vulnerable to Apache Camel Core vulnerabilities CVE-2020-11971, CVE-2020-11973, CVE-2020-11972 Vulnerability Details CVEID: CVE-2020-11971 DESCRIPTION: Apache Camel could allow a remote attacker to obtain sensitive information, caused by a rebind flaw in...
CVE-2020-11972
Apache Camel RabbitMQ enables Java deserialization by default. Apache Camel 2.22.x, 2.23.x, 2.24.x, 2.25.0, 3.0.0 up to 3.1.0 are affected. 2.x users should upgrade to 2.25.1, 3.x users should upgrade to 3.2.0...
CVE-2020-11972
Apache Camel RabbitMQ enables Java deserialization by default. Apache Camel 2.22.x, 2.23.x, 2.24.x, 2.25.0, 3.0.0 up to 3.1.0 are affected. 2.x users should upgrade to 2.25.1, 3.x users should upgrade to 3.2.0...
CVE-2020-11972
Apache Camel RabbitMQ enables Java deserialization by default. Apache Camel 2.22.x, 2.23.x, 2.24.x, 2.25.0, 3.0.0 up to 3.1.0 are affected. 2.x users should upgrade to 2.25.1, 3.x users should upgrade to 3.2.0...
CVE-2020-11972
CVE-2020-11972 affects Apache Camel RabbitMQ: Java deserialization is enabled by default in the RabbitMQ component, enabling remote code execution. Affected Camel versions include 2.22.x, 2.23.x, 2.24.x, 2.25.0, and 3.0.0 up to 3.1.0. To mitigate, upgrade 2.x line to 2.25.1 or the 3.x line to 3.2...