CVE-2024-22371 | Apache Camel up to 3.21.3/3.22.0/4.0.3/4.3.0 EventFactory ExchangeCreatedEvent information disclosure (CAMEL-20305)

Posted by Angelo Barbosa | Feb 24, 2024 | CVE

A vulnerability has been found in Apache Camel up to 3.21.3/3.22.0/4.0.3/4.3.0 and classified as problematic. This vulnerability affects the function ExchangeCreatedEvent of the component EventFactory Handler. The manipulation leads to information disclosure.

This vulnerability was named CVE-2024-22371. Access to the local network is required for this attack. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-22371 | Apache Camel up to 3.21.3/3.22.0/4.0.3/4.3.0 EventFactory ExchangeCreatedEvent information disclosure (CAMEL-20305)

Related Posts

CVE-2024-36978 | Linux Kernel up to 6.10-rc2 sch_multiq multiq_tune out-of-bounds write (affc18fdc694)

CVE-2023-7256 | tcpdump libpcap up to 1.8.x/1.9.x/1.10.4 sock_initaddress double free

CVE-2024-6468 | HashiCorp Vault/Vault Enterprise API Server proxy_protocol_behavior unknown vulnerability

CVE-2024-42135 | Linux Kernel up to 6.6.38/6.9.8 vhost_task Privilege Escalation (abe067dc3a66/dec987fe2df6/db5247d9bf5c)