org.apache.camel:camel-core
Open GitHub opened this alert on 17 Oct 2018
1 org.apache.camel:camel-core vulnerability found in modules/pom.xml on 17 Oct 2018
Remediation
Upgrade org.apache.camel:camel-core to version 2.17.6 or later. For example:
org.apache.camelcamel-core[2.17.6,)
Always verify the validity and compatibility of suggestions with your codebase.
Details
CVE-2017-5643 More information
moderate severity
Vulnerable versions: < 2.17.6
Patched version: 2.17.6
Apache Camel's Validation Component is vulnerable against SSRF via remote DTDs and XXE.
as per https://github.com/incodehq/incode-platform/network/alert/modules/pom.xml/org.apache.camel:camel-core/open
org.apache.camel:camel-core Open GitHub opened this alert on 17 Oct 2018 1 org.apache.camel:camel-core vulnerability found in modules/pom.xml on 17 Oct 2018 Remediation Upgrade org.apache.camel:camel-core to version 2.17.6 or later. For example:
Always verify the validity and compatibility of suggestions with your codebase.
Details CVE-2017-5643 More information moderate severity Vulnerable versions: < 2.17.6 Patched version: 2.17.6 Apache Camel's Validation Component is vulnerable against SSRF via remote DTDs and XXE.