Описание
Apache Camel's File is vulnerable to directory traversal. Camel 2.21.0 to 2.21.3, 2.22.0 to 2.22.2, 2.23.0 and the unsupported Camel 2.x (2.19 and earlier) versions may be also affected.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat Fuse 7 | camel-core | Affected | ||
| Red Hat JBoss A-MQ 6 | camel-core | Out of support scope | ||
| Red Hat JBoss BRMS 5 | camel-core | Out of support scope | ||
| Red Hat JBoss BRMS 6 | camel-core | Out of support scope | ||
| Red Hat JBoss Data Grid 7 | camel-core | Not affected | ||
| Red Hat JBoss Fuse 6 | camel-core | Out of support scope | ||
| Red Hat JBoss Fuse Service Works 6 | camel-core | Out of support scope | ||
| Red Hat JBoss SOA Platform 5 | camel-core | Out of support scope | ||
| Red Hat Fuse 7.3 | Fixed | RHSA-2019:0910 | 30.04.2019 |
Показывать по
10
Дополнительная информация
Статус:
Moderate
Дефект:
CWE-22
https://bugzilla.redhat.com/show_bug.cgi?id=1707581camel: Directory traversal in file producer
EPSS
Процентиль: 85%
0.0257
Низкий
6.2 Medium
CVSS3
Связанные уязвимости
CVSS3: 7.5
nvd
почти 7 лет назад
Apache Camel's File is vulnerable to directory traversal. Camel 2.21.0 to 2.21.3, 2.22.0 to 2.22.2, 2.23.0 and the unsupported Camel 2.x (2.19 and earlier) versions may be also affected.
EPSS
Процентиль: 85%
0.0257
Низкий
6.2 Medium
CVSS3