Vulnerabilities > CVE-2015-0263 - Unspecified vulnerability in Apache Camel

047910
CVSS 0.0 - NONE
Attack vector
UNKNOWN
Attack complexity
UNKNOWN
Privileges required
UNKNOWN
Confidentiality impact
UNKNOWN
Integrity impact
UNKNOWN
Availability impact
UNKNOWN

Summary

XML external entity (XXE) vulnerability in the XML converter setup in converter/jaxp/XmlConverter.java in Apache Camel before 2.13.4 and 2.14.x before 2.14.2 allows remote attackers to read arbitrary files via an external entity in an SAXSource.

Redhat

advisories
  • rhsa
    idRHSA-2015:1041
  • rhsa
    idRHSA-2015:1538
  • rhsa
    idRHSA-2015:1539