1. Home
  2. Vulnerabilities
  3. CVE-2024-22371

CVE-2024-22371

CVSS v3.1 2.9 (Low)
29% Progress
EPSS 0.04 % (10th)
0.04% Progress
Advisories 1
Info CVSS EPSS References Security Advisories Packages & Software Graph Web & Social Timeline

Exposure of sensitive data by by crafting a malicious EventFactory and providing a custom ExchangeCreatedEvent that exposes sensitive data. Vulnerability in Apache Camel.This issue affects Apache Camel: from 3.21.X through 3.21.3, from 3.22.X through 3.22.0, from 4.0.X through 4.0.3, from 4.X through 4.3.0.

Users are recommended to upgrade to version 3.21.4, 3.22.1, 4.0.4 or 4.4.0, which fixes the issue.

CVE Status
PUBLISHED
CNA
Apache Software Foundation
Published Date
2024-02-26 16:27:56
(6 months ago)
Updated Date
2024-02-26 16:32:25
(6 months ago)