Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Camel
(Apache)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 23 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2014-03-21 | CVE-2014-0003 | The XSLT component in Apache Camel 2.11.x before 2.11.4, 2.12.x before 2.12.3, and possibly earlier versions allows remote attackers to execute arbitrary Java methods via a crafted message. | Camel | N/A | ||
| 2020-05-14 | CVE-2020-11973 | Apache Camel Netty enables Java deserialization by default. Apache Camel 2.22.x, 2.23.x, 2.24.x, 2.25.0, 3.0.0 up to 3.1.0 are affected. 2.x users should upgrade to 2.25.1, 3.x users should upgrade to 3.2.0. | Camel, Communications_diameter_signaling_router, Enterprise_manager_base_platform, Flexcube_private_banking | 9.8 | ||
| 2020-05-14 | CVE-2020-11972 | Apache Camel RabbitMQ enables Java deserialization by default. Apache Camel 2.22.x, 2.23.x, 2.24.x, 2.25.0, 3.0.0 up to 3.1.0 are affected. 2.x users should upgrade to 2.25.1, 3.x users should upgrade to 3.2.0. | Camel, Communications_diameter_signaling_router, Enterprise_manager_base_platform, Flexcube_private_banking | 9.8 |