Lucene search
K

82 matches found

ATTACKERKB
ATTACKERKB
added 2026/07/06 8:2 a.m.6 views

CVE-2026-46584

Improper Input Validation, Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Apache Camel Mail Component. The camel-mail producer MailProducer.getSender scanned the outgoing Exchange for message headers in the mail.smtp. / mail.smtps. namespace and, when any were present...

6AI score0.00378EPSS
Exploits0References2Affected Software1
EUVD
EUVD
added 2026/07/06 8:2 a.m.5 views

EUVD-2026-41832

Improper Input Validation, Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Apache Camel Mail Component. The camel-mail producer MailProducer.getSender scanned the outgoing Exchange for message headers in the mail.smtp. / mail.smtps. namespace and, when any were present...

3.7CVSS6AI score0.00378EPSS
Exploits0References1
CVE
CVE
added 2026/07/06 8:2 a.m.13 views

CVE-2026-46584

CVE-2026-46584 affects Apache Camel’s Mail component. The MailProducer.getSender could read headers from the mail.smtp/mail.smtps namespace and apply them as JavaMail session properties, overriding endpoint config. This allows attacker-controlled inputs to influence SMTP parameters if untrusted i...

3.7CVSS6AI score0.00378EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2026/04/27 9:42 a.m.99 views

CVE-2026-33454

The CVE describes an inbound header filtering gap in Camel-Mail (MailHeaderFilterStrategy): inbound headers are not filtered, allowing attacker-delivered email to inject Camel-specific headers that can influence downstream components (e.g., camel-bean, camel-exec, camel-sql). Affected: Apache Cam...

9.4CVSS5.3AI score0.00621EPSS
Exploits1References6Affected Software1
CNNVD
CNNVD
added 2026/04/27 12:0 a.m.12 views

Apache Camel 代码问题漏洞

Apache Camel is an open-source integration framework based on the Enterprise Integration Pattern EIP, developed by the Apache Foundation in the United States. This framework provides implementations of Java objects following the EIP pattern, and routing and mediation rules are configured through...

9.4CVSS5.9AI score0.00621EPSS
Exploits1References1
OSV
OSV
added 2026/04/15 7:22 p.m.6 views

USN-8176-1 dotnet8, dotnet9, dotnet10 vulnerabilities

Ludvig Pedersen discovered that the System.Security.Cryptography.Xml library in .NET incorrectly handled certain XML inputs. An attacker could possibly use this issue to consume excessive resources, resulting in a denial of service. CVE-2026-33116, CVE-2026-26171 Ludvig Pedersen and Kevin Jones...

7.5CVSS5.8AI score0.02279EPSS
Exploits0References5
CNVD
CNVD
added 2026/03/02 12:0 a.m.3 views

Security Bypass Vulnerability in Multiple Apple Products (CNVD-2026-14493)

Apple iOS is an operating system developed for mobile devices.Apple macOS is a specialized operating system developed for Mac computers.Apple iPadOS is an operating system for iPad tablets. A security bypass vulnerability exists in multiple Apple products and is caused due to a logic issue in the...

5.3CVSS5.9AI score0.00309EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/02/11 12:0 a.m.10 views

Apple多款产品 安全漏洞

Apple iOS is an operating system developed for mobile devices.Apple macOS is a specialized operating system developed for Mac computers.Apple iPadOS is an operating system for iPad tablets. A security bypass vulnerability exists in multiple Apple products and is caused due to a logic issue in the...

5.3CVSS5.8AI score0.00309EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2017-5389

Malware in sbrugna...

7.5CVSS8.2AI score0.01036EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2010-0918

Malware in sbrugna...

4.3CVSS6.2AI score0.02354EPSS
Exploits0References7
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2009-3367

Malware in sbrugna...

7.1CVSS8.9AI score0.0277EPSS
Exploits0References11
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2016-5674

Malware in sbrugna...

7.5CVSS8.7AI score0.01003EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2018-15897

Malware in sbrugna...

5.9CVSS7.7AI score0.01159EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2016-8430

Malware in sbrugna...

6.5CVSS7.4AI score0.00849EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2018-15960

Malware in sbrugna...

5.9CVSS7.6AI score0.01511EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2017-16179

Malware in sbrugna...

5.3CVSS7.4AI score0.015EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2010-3887

Malware in sbrugna...

6CVSS6.4AI score0.01639EPSS
Exploits1References8
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2018-16013

Malware in sbrugna...

7.5CVSS8.1AI score0.01893EPSS
Exploits1References6
EUVD
EUVD
added 2025/10/03 8:7 p.m.11 views

EUVD-2025-25112

Malicious code in bioql PyPI...

5.5CVSS5.6AI score0.00198EPSS
Exploits1References5
CNNVD
CNNVD
added 2025/08/18 12:0 a.m.7 views

1&1 Mail & Media mail.com App 安全漏洞

1&1 Mail & Media mail.com App is an email application from the German company 1&1 Mail & Media. A security vulnerability exists in 1&1 Mail & Media mail.com App version 8.8.0, which stems from an improper export of the component com.mail.mobile.android.mail, which allows a local attacker to launc...

5.5CVSS6.4AI score0.00198EPSS
Exploits1References5
Rows per page
Query Builder