Red hat integration camel for spring boot
This hub aggregates every CVE we track for Red hat integration camel for spring boot, a product in the operating systems space. Use it to gauge the current risk picture and drill into individual advisories.
Operating Systemson-prem
22
CVEs tracked
3
Critical
8
High
0
In CISA KEV
Severity distribution
MEDIUM11HIGH8CRITICAL3
Monthly trend
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
2024-082026-07
Latest CVEs
The 15 most recently published vulnerabilities affecting Red hat integration camel for spring boot.
- CVE-2023-45648Apache Tomcat: Trailer header parsing too lenient5.3
- CVE-2023-39410Apache Avro Java SDK: Memory when deserializing untrusted data in Avro Java SDK7.5
- CVE-2022-4245Codehaus-plexus: xml external entity (xxe) injection4.3
- CVE-2022-4244Codehaus-plexus: directory traversal7.5
- CVE-2023-40167Jetty accepts "+" prefixed value in Content-Length5.3
- CVE-2022-46751Apache Ivy: XML External Entity vulnerability in Apache Ivy8.2
- CVE-2023-33008Apache Johnzon: Prevent inefficient internal conversion from BigDecimal at large scale5.3
- CVE-2023-34462netty-handler SniHandler 16MB allocation6.5
- CVE-2023-26048OutOfMemoryError for large multipart without filename in Eclipse Jetty5.3
- CVE-2023-20861In Spring Framework versions 6.0.0 - 6.0.6, 5.3.0 - 5.3.25, 5.2.0.RELEASE - 5.2.22.RELEASE, and older unsupported versions, it is possible for a user to provide a specially crafted SpEL expression ...6.5
- CVE-2021-46877jackson-databind 2.10.x through 2.12.x before 2.12.6 and 2.13.x before 2.13.1 allows attackers to cause a denial of service (2 GB transient heap usage per read) in uncommon situations involving Jso...7.5
- CVE-2023-22602Apache Shiro before 1.11.0, when used with Spring Boot 2.6+, may allow authentication bypass through a specially crafted HTTP request7.5
- CVE-2022-41966XStream Denial of Service via stack overflow 8.2
- CVE-2022-46175JSON5 is an extension to the popular JSON file format that aims to be easier to write and maintain by hand (e.g. for config files). The `parse` method of the JSON5 library before and including vers...7.1
- CVE-2022-45047Apache MINA SSHD: Java unsafe deserialization vulnerability9.8
Product normalization is registry-driven with AI assist and human review. How it works