VYPR
High severity7.4NVD Advisory· Published Mar 16, 2017· Updated Jun 17, 2026

CVE-2017-5643

CVE-2017-5643

Description

Apache Camel's Validation Component is vulnerable against SSRF via remote DTDs and XXE.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected packages

Versions sourced from the GitHub Security Advisory.

PackageAffected versionsPatched versions
org.apache.camel:camel-coreMaven
< 2.17.62.17.6
org.apache.camel:camel-coreMaven
>= 2.18.0, < 2.18.22.18.2

Affected products

12
  • Apache/Camel11 versions
    cpe:2.3:a:apache:camel:*:*:*:*:*:*:*:*+ 10 more
    • cpe:2.3:a:apache:camel:*:*:*:*:*:*:*:*range: <=2.16.0
    • cpe:2.3:a:apache:camel:2.17.0:*:*:*:*:*:*:*
    • cpe:2.3:a:apache:camel:2.17.1:*:*:*:*:*:*:*
    • cpe:2.3:a:apache:camel:2.17.2:*:*:*:*:*:*:*
    • cpe:2.3:a:apache:camel:2.17.3:*:*:*:*:*:*:*
    • cpe:2.3:a:apache:camel:2.17.4:*:*:*:*:*:*:*
    • cpe:2.3:a:apache:camel:2.17.5:*:*:*:*:*:*:*
    • cpe:2.3:a:apache:camel:2.18.0:*:*:*:*:*:*:*
    • cpe:2.3:a:apache:camel:2.18.1:*:*:*:*:*:*:*
    • cpe:2.3:a:apache:camel:2.18.2:*:*:*:*:*:*:*
    • (no CPE)range: 2.17.0 to 2.17.5
  • ghsa-coords
    Range: < 2.17.6

Patches

Vulnerability mechanics

References

13

News mentions

0

No linked articles in our index yet.