Apache Camel is vulnerable to XML External Entity (XXE) attacks. The library doesn’t properly handle Document Type Declarations (DTD), allowing a malicious user to cause an XXE attack.
CPE | Name | Operator | Version |
---|---|---|---|
camel :: core | eq | 2.21.0 | |
camel :: core | le | 2.20.3 |