CVE-2026-40473 | Apache Camel up to 4.14.5/4.18.1/4.19.x Camel-Mina MinaConverter.toObjectInput deserialization

Inserito da Angelo Barbosa | Apr 27, 2026 | CVE

A vulnerability classified as critical was found in Apache Camel up to 4.14.5/4.18.1/4.19.x. The affected element is the function MinaConverter.toObjectInput of the component Camel-Mina. The manipulation results in deserialization.

This vulnerability is reported as CVE-2026-40473. The attack can be launched remotely. No exploit exists.

Upgrading the affected component is advised.

CVE-2026-40473 | Apache Camel up to 4.14.5/4.18.1/4.19.x Camel-Mina MinaConverter.toObjectInput deserialization

Post correlati

CVE-2026-1508 | Court Reservation Plugin up to 1.10.8 on WordPress cross-site request forgery

CVE-2023-49170 | CaptainForm Form Builder Plugin up to 2.5.3 on WordPress cross site scripting

CVE-2024-23519 | M&S Consulting Email Before Download Plugin up to 6.9.7 on WordPress cross-site request forgery

CVE-2023-39245 | Dell ESI for SAP LAMA up to 9.x EHAC cleartext transmission (dsa-2023-299)