Loading HuntDB...
Hunt
Vulnerability Intelligence by wss.sh
Home Daily Briefings High Impact CVEs Recent Exploits KEV Catalog GitHub Advisories Latest Updates Security News
Sign In Sign Up

CVE-2023-34442

UNKNOWN
Published 2023-07-10T09:31:05.286Z
Actions:

Expert Analysis

Professional remediation guidance

Get tailored security recommendations from our analyst team for CVE-2023-34442. We'll provide specific mitigation strategies based on your environment and risk profile.

No CVSS data available

Description

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Apache Software Foundation Apache Camel.This issue affects Apache Camel: from 3.X through <=3.14.8, from 3.18.X through <=3.18.7, from 3.20.X through <= 3.20.5, from 4.X through <= 4.0.0-M3.

Users should upgrade to 3.14.9, 3.18.8, 3.20.6 or 3.21.0 and for users on Camel 4.x update to 4.0.0-M1

Available Exploits

No exploits available for this CVE.

Related News

No news articles found for this CVE.

Affected Products

Apache Software Foundation

Apache Camel JIRA

Affected Versions:

3.x 3.18.x 3.20.x 4.x

GitHub Security Advisories

Community-driven vulnerability intelligence from GitHub

✓ GitHub Reviewed LOW

Apache Camel information exposure vulnerability

GHSA-6g2w-257v-3c9f

Advisory Details

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Apache Software Foundation Apache Camel. This issue affects Apache Camel from 3.X through <=3.14.8, from 3.18.X through <=3.18.7, from 3.20.X through <= 3.20.5, from 4.X through <= 4.0.0-M3. Users should upgrade to 3.14.9, 3.18.8, 3.20.6 or 3.21.0 and for users on Camel 4.x update to 4.0.0-RC1

Affected Packages

Maven org.apache.camel:camel-jira
ECOSYSTEM: ≥3.0.0-M3 <3.14.9
Maven org.apache.camel:camel-jira
ECOSYSTEM: ≥3.15.0 <3.18.8
Maven org.apache.camel:camel-jira
ECOSYSTEM: ≥3.20.0 <3.20.6
Maven org.apache.camel:camel-jira
ECOSYSTEM: ≥4.0.0-M1 <4.0.0-RC1

CVSS Scoring

CVSS Score

2.5

CVSS Vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

References

ADVISORY https://nvd.nist.gov/vuln/detail/CVE-2023-34442
WEB https://github.com/apache/camel/commit/b61d5b6be4f98b673dc977ad1bc6f004642644ab
WEB https://camel.apache.org/security/CVE-2023-34442.html
PACKAGE https://github.com/apache/camel
WEB https://issues.apache.org/jira/browse/CAMEL-19421
WEB https://lists.apache.org/thread/x4vy2hhbltb1xrvy1g6m8hpjgj2k7wgh

Advisory provided by GitHub Security Advisory Database. Published: July 10, 2023, Modified: July 19, 2023

References

https://lists.apache.org/thread/x4vy2hhbltb1xrvy1g6m8hpjgj2k7wgh
Published: 2023-07-10T09:31:05.286Z
Last Modified: 2024-10-07T19:41:16.865Z
Copied to clipboard!