CVE-2026-46590
CVE-2026-46590 affects Apache Camel: Camel-PQC. The HashiCorp Vault and AWS Secrets Manager key-lifecycle managers deserialize a Base64-wrapped metadata object using an unfiltered java.io.ObjectInputStream, with cast to KeyMetadata performed after readObject(). This allows crafted serialized obje...