Camel Security Vulnerabilities and Issues — Camel CVE List

Lucene search

ApacheCamel

5 matches found

CVE•added 2017/03/28 6:59 p.m.•138 views

CVE-2016-8749

Apache Camel's Jackson and JacksonXML unmarshalling operation are vulnerable to Remote Code Execution attacks.

9.8CVSS9.6AI score0.07394EPSS

CVE•added 2017/03/07 3:59 p.m.•120 views

CVE-2017-3159

Apache Camel's camel-snakeyaml component is vulnerable to Java object de-serialization vulnerability. De-serializing untrusted data can lead to security flaws.

9.8CVSS9.3AI score0.02766EPSS

CVE•added 2017/03/16 3:59 p.m.•105 views

CVE-2017-5643

Apache Camel's Validation Component is vulnerable against SSRF via remote DTDs and XXE.

7.4CVSS7.3AI score0.00717EPSS

CVE•added 2017/11/15 3:29 p.m.•84 views

CVE-2017-12633

The camel-hessian component in Apache Camel 2.x before 2.19.4 and 2.20.x before 2.20.1 is vulnerable to Java object de-serialisation vulnerability. De-serializing untrusted data can lead to security flaws.

9.8CVSS9.3AI score0.03414EPSS

CVE•added 2017/11/15 3:29 p.m.•79 views

CVE-2017-12634

The camel-castor component in Apache Camel 2.x before 2.19.4 and 2.20.x before 2.20.1 is vulnerable to Java object de-serialisation vulnerability. De-serializing untrusted data can lead to security flaws.

9.8CVSS9.3AI score0.04565EPSS