CVE-2026-46584
Affected software: Apache Camel Mail component (MailProducer). Issue: the mail.smtp/.mail.smtps headers in messages were read and applied as JavaMail session properties, overriding endpoint configuration. This Camel-internal namespace was not blocked by HeaderFilterStrategy, allowing untrusted in...