Camel Security Vulnerabilities and Issues — Camel CVE List

Lucene search

ApacheCamel

4 matches found

CVE•added 2025/03/09 1:15 p.m.•222 views

CVE-2025-27636

Bypass/Injection vulnerability in Apache Camel components under particular conditions. This issue affects Apache Camel: from 4.10.0 through <= 4.10.1, from 4.8.0 through <= 4.8.4, from 3.10.0 through

5.6CVSS5.1AI score0.40308EPSS

CVE•added 2015/06/03 8:59 p.m.•81 views

CVE-2015-0263

XML external entity (XXE) vulnerability in the XML converter setup in converter/jaxp/XmlConverter.java in Apache Camel before 2.13.4 and 2.14.x before 2.14.2 allows remote attackers to read arbitrary files via an external entity in an SAXSource.

5CVSS9.1AI score0.0362EPSS

CVE•added 2018/09/17 2:29 p.m.•80 views

CVE-2018-8041

Apache Camel's Mail 2.20.0 through 2.20.3, 2.21.0 through 2.21.1 and 2.22.0 is vulnerable to path traversal.

5.3CVSS5.1AI score0.02568EPSS

CVE•added 2015/06/03 8:59 p.m.•76 views

CVE-2015-0264

Multiple XML external entity (XXE) vulnerabilities in builder/xml/XPathBuilder.java in Apache Camel before 2.13.4 and 2.14.x before 2.14.2 allow remote attackers to read arbitrary files via an external entity in an invalid XML (1) String or (2) GenericFile object in an XPath query.

5CVSS9.3AI score0.02016EPSS