Lucene search
+L

11 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2024/07/01 3:2 a.m.28 views

Security Bulletin: IBM Tivoli Netcool Impact is vulnerable to information disclosure due to Apache Camel (CVE-2024-22371)

Summary Apache Camel is shipped with IBM Tivoli Netcool Impact as part of the data provider interface in the GUI server. Information about a security vulnerability affecting Apache ActiveMQ has been published in a security bulletin. Vulnerability Details CVEID:CVE-2024-22371 DESCRIPTION: Apache...

7.5CVSS4AI score0.00695EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2024/06/25 12:46 p.m.29 views

Security Bulletin: IBM Jazz for Service Management is vulnerable due to Apache camel-core-3.2.0.jar ( CVE-2024-22371)

Summary IBM Jazz for Service Management is vulnerable due to Apache camel-core-3.2.0.jar. Exposure of sensitive data by crafting a malicious EventFactory and providing a custom ExchangeCreatedEvent that exposes sensitive data. Vulnerability Details CVEID:CVE-2024-22371 DESCRIPTION: Apache Camel...

7.5CVSS4AI score0.00695EPSS
Exploits0Affected Software1
RedHat Linux
RedHat Linux
added 2024/05/16 5:31 p.m.39 views

Important: Red Hat Security Advisory: Red Hat Build of Apache Camel 4.4 for Quarkus 3.8 update is now available (RHBQ 3.8.4.SP1)

An update for Red Hat Build of Apache Camel 4.4 for Quarkus 3.8 update is now available RHBQ 3.8.4.SP1. The purpose of this text-only errata is to inform you about the enhancements that improve your developer experience and ensure the security and stability of your products. Red Hat Product...

9.3CVSS6.6AI score0.05849EPSS
Exploits1References1
vulnersOsv
vulnersOsv
added 2024/02/26 6:30 p.m.7 views

com.artnaseef:correlation-id-utils-camel-v4 (=2.4.0), com.codbex.atlas:codbex-atlas-application (=2.110.0) +95 more potentially affected by CVE-2024-22371 via org.apache.camel:camel-core (>=4.1.0 <=4.3.0)

org.apache.camel:camel-core MAVEN version =4.1.0, =2.74.0, =1.0.2, =3.3.0, =3.3.0, =3.3.0, =1.10.0, =1.38.0 - io.dscope:dscope-camel-iso20022 =0.2.0 - io.dscope:dscope-camel-rosettanet =1.1.0 - io.fabric8.examples.fabric-camel-dosgi:camel-route =1.2.0.redhat-133 -...

7.5CVSS5.7AI score0.00695EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2024/02/26 6:30 p.m.5 views

de.ikor.sip.foundation:sip-integration-starter (=3.2.0), de.ikor.sip.foundation:sip-security (=3.2.0) +95 more potentially affected by CVE-2024-22371 via org.apache.camel:camel-core (>=4.0.0 <=4.0.3)

org.apache.camel:camel-core MAVEN version =4.0.0, =4.0.0, =4.0.0, =4.0.0, =4.0.0, =4.0.0, =4.0.0, =4.0.0, =4.0.0, =4.0.0, =4.0.0, =4.0.0, =4.0.0, =4.0.3 a...

7.5CVSS5.8AI score0.00695EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2024/02/26 6:30 p.m.11 views

com.bitbreeds.webrtc:webrtc-example (=0.2.5), com.bitbreeds.webrtc:webrtc-signaling (=0.2.5) +504 more potentially affected by CVE-2024-22371 via org.apache.camel:camel-core (>=3.0.0 <=3.21.3)

org.apache.camel:camel-core MAVEN version =3.0.0, =3.0.0-M1, =3.11.0, =2.0.0, =2.0.0, =3.0.0, =2.3.0, =2.3.0, =2.3.0, =1.44.0-M1, =0.1.0, =0.1.1 and more Source cves: CVE-2024-22371 Source advisory: OSV:GHSA-QPXM-689R-3849...

7.5CVSS5.8AI score0.00695EPSS
Exploits0
NVD
NVD
added 2024/02/26 4:27 p.m.35 views

CVE-2024-22371

Exposure of sensitive data by by crafting a malicious EventFactory and providing a custom ExchangeCreatedEvent that exposes sensitive data. Vulnerability in Apache Camel.This issue affects Apache Camel: from 3.21.X through 3.21.3, from 3.22.X through 3.22.0, from 4.0.X through 4.0.3, from 4.X...

7.5CVSS4.2AI score0.00695EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/02/26 9:22 a.m.43 views

CVE-2024-22371 Apache Camel issue on ExchangeCreatedEvent

Exposure of sensitive data by by crafting a malicious EventFactory and providing a custom ExchangeCreatedEvent that exposes sensitive data. Vulnerability in Apache Camel.This issue affects Apache Camel: from 3.21.X through 3.21.3, from 3.22.X through 3.22.0, from 4.0.X through 4.0.3, from 4.X...

2.9CVSS4AI score0.00695EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/02/26 9:22 a.m.27 views

CVE-2024-22371 Apache Camel issue on ExchangeCreatedEvent

Exposure of sensitive data by by crafting a malicious EventFactory and providing a custom ExchangeCreatedEvent that exposes sensitive data. Vulnerability in Apache Camel.This issue affects Apache Camel: from 3.21.X through 3.21.3, from 3.22.X through 3.22.0, from 4.0.X through 4.0.3, from 4.X...

2.9CVSS6.6AI score0.00695EPSS
Exploits0References1
CVE
CVE
added 2024/02/26 9:22 a.m.165 views

CVE-2024-22371

Summary (CVE-2024-22371) Apache Camel contains a vulnerability where crafting a malicious EventFactory and supplying a custom ExchangeCreatedEvent could expose sensitive data. This affects Camel releases across multiple branches: 3.21.x (up to 3.21.3), 3.22.x (up to 3.22.0), 4.0.x (up to 4.0.3), ...

7.5CVSS4AI score0.00695EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2024/02/26 9:22 a.m.7 views

CVE-2024-22371 Apache Camel issue on ExchangeCreatedEvent

Exposure of sensitive data by by crafting a malicious EventFactory and providing a custom ExchangeCreatedEvent that exposes sensitive data. Vulnerability in Apache Camel.This issue affects Apache Camel: from 3.21.X through 3.21.3, from 3.22.X through 3.22.0, from 4.0.X through 4.0.3, from 4.X...

2.9CVSS6AI score0.00695EPSS
Exploits0References3
Rows per page
Query Builder