VYPR
Critical severity9.8NVD Advisory· Published Feb 3, 2016· Updated Jun 17, 2026

CVE-2015-5344

CVE-2015-5344

Description

The camel-xstream component in Apache Camel before 2.15.5 and 2.16.x before 2.16.1 allow remote attackers to execute arbitrary commands via a crafted serialized Java object in an HTTP request.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected packages

Versions sourced from the GitHub Security Advisory.

PackageAffected versionsPatched versions
org.apache.camel:camel-xstreamMaven
< 2.15.52.15.5
org.apache.camel:camel-xstreamMaven
>= 2.16.0, < 2.16.12.16.1

Affected products

3

Patches

Vulnerability mechanics

References

18

News mentions

0

No linked articles in our index yet.