Lucene search
K

4 matches found

NVD
NVD
added 5 hours ago4 views

CVE-2026-40859

Deserialization of Untrusted Data vulnerability in Apache Camel. The camel-vertx-http component deserializes HTTP response bodies carrying the Content-Type application/x-java-serialized-object using a raw java.io.ObjectInputStream, without applying any ObjectInputFilter...

Exploits0References2
Cvelist
Cvelist
added 6 hours ago5 views

CVE-2026-40859 Apache Camel: Camel-Vertx-Http: Unsafe Java deserialization of HTTP response bodies via a raw ObjectInputStream when transferException is enabled

Deserialization of Untrusted Data vulnerability in Apache Camel. The camel-vertx-http component deserializes HTTP response bodies carrying the Content-Type application/x-java-serialized-object using a raw java.io.ObjectInputStream, without applying any ObjectInputFilter...

Exploits0References1
EUVD
EUVD
added 6 hours ago4 views

EUVD-2026-41824

Deserialization of Untrusted Data vulnerability in Apache Camel. The camel-vertx-http component deserializes HTTP response bodies carrying the Content-Type application/x-java-serialized-object using a raw java.io.ObjectInputStream, without applying any ObjectInputFilter...

6.7AI score
Exploits0References1
CVE
CVE
added 6 hours ago5 views

CVE-2026-40859

CVE-2026-40859 affects Apache Camel’s camel-vertx-http component. When transferException=true (or allowJavaSerializedObject=true) and throwExceptionOnFailure remains true, HTTP responses with Content-Type application/x-java-serialized-object are deserialized via raw java.io.ObjectInputStream with...

6.7AI score
Exploits0References2
Rows per page
Query Builder