CVE-2026-40858 | Apache Camel up to 4.14.6/4.18.1/4.19.x Camel-Infinispan deserialization

Inserito da Angelo Barbosa | Apr 27, 2026 | CVE

A vulnerability, which was classified as critical, has been found in Apache Camel up to 4.14.6/4.18.1/4.19.x. The impacted element is an unknown function of the component Camel-Infinispan. This manipulation causes deserialization.

This vulnerability appears as CVE-2026-40858. The attack may be initiated remotely. There is no available exploit.

It is advisable to upgrade the affected component.

CVE-2026-40858 | Apache Camel up to 4.14.6/4.18.1/4.19.x Camel-Infinispan deserialization

Post correlati

CVE-2024-32147 | Form Plugin Easy Contact Form Lite Plugin up to 1.1.23 on WordPress cross site scripting

CVE-2025-0822 | bitpressadmin Chat Widget Plugin up to 1.5.2 on WordPress fileID path traversal

CVE-2024-1400 | Mollie Forms Plugin up to 2.6.3 on WordPress Post authorization

CVE-2024-5915 | Palo Alto GlobalProtect App prior 6.1.5/6.2.4/6.3.1 on Windows permission assignment