VYPR

Maven package

org.apache.camel/camel-castor

pkg:maven/org.apache.camel/camel-castor

Vulnerabilities (1)

  • CVE-2017-12634CriNov 15, 2017
    affected >= 2.0.0, < 2.19.4fixed 2.19.4

    The camel-castor component in Apache Camel 2.x before 2.19.4 and 2.20.x before 2.20.1 is vulnerable to Java object de-serialisation vulnerability. De-serializing untrusted data can lead to security flaws.