Security
Headlines
HeadlinesLatestCVEs

Headline

GHSA-6g2w-257v-3c9f: Apache Camel information exposure vulnerability

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Apache Software Foundation Apache Camel. This issue affects Apache Camel from 3.X through <=3.14.8, from 3.18.X through <=3.18.7, from 3.20.X through <= 3.20.5, from 4.X through <= 4.0.0-M3.

Users should upgrade to 3.14.9, 3.18.8, 3.20.6 or 3.21.0 and for users on Camel 4.x update to 4.0.0-RC1

ghsa
#vulnerability#apache#git#java#auth#jira#maven

Skip to content

    • Actions

      Automate any workflow

    • Packages

      Host and manage packages

    • Security

      Find and fix vulnerabilities

    • Codespaces

      Instant dev environments

    • Copilot

      Write better code with AI

    • Code review

      Manage code changes

    • Issues

      Plan and track work

    • Discussions

      Collaborate outside of code

    • GitHub Sponsors

      Fund open source developers

*   The ReadME Project
    
    GitHub community articles
  • Pricing
  1. GitHub Advisory Database
  2. GitHub Reviewed
  3. CVE-2023-34442

Apache Camel information exposure vulnerability

Moderate severity GitHub Reviewed Published Jul 10, 2023 to the GitHub Advisory Database • Updated Jul 10, 2023

Package

maven org.apache.camel:camel-jira (Maven)

Affected versions

>= 3.0.0-M3, < 3.14.9

>= 3.15.0, < 3.18.8

>= 3.20.0, < 3.20.6

>= 4.0.0-M1, <= 4.0.0-M3

Patched versions

3.14.9

3.18.8

3.20.6

4.0.0-RC1

Description

Published to the GitHub Advisory Database

Jul 10, 2023

Last updated

Jul 10, 2023

Related news

CVE-2023-34442

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Apache Software Foundation Apache Camel.This issue affects Apache Camel: from 3.X through <=3.14.8, from 3.18.X through <=3.18.7, from 3.20.X through <= 3.20.5, from 4.X through <= 4.0.0-M3. Users should upgrade to 3.14.9, 3.18.8, 3.20.6 or 3.21.0 and for users on Camel 4.x update to 4.0.0-M1