Package Instance

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/apache/camel/pull/2700

reference_url

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/apache/camel/pull/2700

reference_url

https://issues.apache.org/jira/browse/CAMEL-13042

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://issues.apache.org/jira/browse/CAMEL-13042

reference_url

https://lists.apache.org/thread.html/0a163d02169d3d361150e8183df4af33f1a3d8a419b2937ac8e6c66f@%3Cusers.camel.apache.org%3E

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/0a163d02169d3d361150e8183df4af33f1a3d8a419b2937ac8e6c66f@%3Cusers.camel.apache.org%3E

reference_url

https://lists.apache.org/thread.html/45e23ade8d3cb754615f95975e89e8dc73c59eeac914f07d53acbac6@%3Ccommits.camel.apache.org%3E

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/45e23ade8d3cb754615f95975e89e8dc73c59eeac914f07d53acbac6@%3Ccommits.camel.apache.org%3E

reference_url

https://lists.apache.org/thread.html/a39441db574ee996f829344491b3211b53c9ed926f00ae5d88943b76@%3Cdev.camel.apache.org%3E

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/a39441db574ee996f829344491b3211b53c9ed926f00ae5d88943b76@%3Cdev.camel.apache.org%3E

reference_url

https://lists.apache.org/thread.html/b4014ea7c5830ca1fc28edd5cafedfe93ad4af2d9e69c961c5def31d@%3Ccommits.camel.apache.org%3E

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/b4014ea7c5830ca1fc28edd5cafedfe93ad4af2d9e69c961c5def31d@%3Ccommits.camel.apache.org%3E

reference_url

http://www.openwall.com/lists/oss-security/2019/04/30/2

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

http://www.openwall.com/lists/oss-security/2019/04/30/2

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1707581
reference_id	1707581
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1707581

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2019-0194

reference_id

CVE-2019-0194

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2019-0194

reference_url

https://github.com/advisories/GHSA-4wjq-69rc-8wcp

reference_id

GHSA-4wjq-69rc-8wcp

reference_type

scores

value	HIGH
scoring_system	cvssv3.1_qr
scoring_elements

url

https://github.com/advisories/GHSA-4wjq-69rc-8wcp

fixed_packages

url pkg:maven/org.apache.camel/camel-core@2.19.1

purl pkg:maven/org.apache.camel/camel-core@2.19.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-n8rf-enh6-q3bq

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.camel/camel-core@2.19.1

url pkg:maven/org.apache.camel/camel-core@2.21.4

purl pkg:maven/org.apache.camel/camel-core@2.21.4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-n8rf-enh6-q3bq

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.camel/camel-core@2.21.4

url pkg:maven/org.apache.camel/camel-core@2.21.5

purl pkg:maven/org.apache.camel/camel-core@2.21.5

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-n8rf-enh6-q3bq

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.camel/camel-core@2.21.5

url pkg:maven/org.apache.camel/camel-core@2.22.3

purl pkg:maven/org.apache.camel/camel-core@2.22.3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-n8rf-enh6-q3bq

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.camel/camel-core@2.22.3

url pkg:maven/org.apache.camel/camel-core@2.23.1

purl pkg:maven/org.apache.camel/camel-core@2.23.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-n8rf-enh6-q3bq

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.camel/camel-core@2.23.1

aliases CVE-2019-0194, GHSA-4wjq-69rc-8wcp

risk_score 4.0

exploitability 0.5

weighted_severity 8.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-579q-qqj8-63gs

url VCID-aard-mgx9-rff2

vulnerability_id VCID-aard-mgx9-rff2

summary XML external entity (XXE) vulnerability in the XML converter setup in converter/jaxp/XmlConverter.java in Apache Camel before 2.13.4 and 2.14.x before 2.14.2 allows remote attackers to read arbitrary files via an external entity in an SAXSource.

references

reference_url	http://camel.apache.org/security-advisories.html
reference_id
reference_type
scores
url	http://camel.apache.org/security-advisories.html

reference_url

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

reference_url

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

reference_url

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://api.first.org/data/v1/epss?cve=CVE-2015-0263

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-0263.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-0263.json

reference_url

reference_id

reference_type

scores

value	0.0257
scoring_system	epss
scoring_elements	0.85586
published_at	2026-04-24T12:55:00Z

value	0.0257
scoring_system	epss
scoring_elements	0.85564
published_at	2026-04-21T12:55:00Z

value	0.0257
scoring_system	epss
scoring_elements	0.85568
published_at	2026-04-18T12:55:00Z

value	0.0257
scoring_system	epss
scoring_elements	0.85563
published_at	2026-04-16T12:55:00Z

value	0.0257
scoring_system	epss
scoring_elements	0.8554
published_at	2026-04-13T12:55:00Z

value	0.0257
scoring_system	epss
scoring_elements	0.85497
published_at	2026-04-04T12:55:00Z

value	0.0257
scoring_system	epss
scoring_elements	0.85597
published_at	2026-04-29T12:55:00Z

value	0.0257
scoring_system	epss
scoring_elements	0.85596
published_at	2026-04-26T12:55:00Z

value	0.0257
scoring_system	epss
scoring_elements	0.85502
published_at	2026-04-07T12:55:00Z

value	0.0257
scoring_system	epss
scoring_elements	0.85543
published_at	2026-04-12T12:55:00Z

value	0.0257
scoring_system	epss
scoring_elements	0.85545
published_at	2026-04-11T12:55:00Z

value	0.0257
scoring_system	epss
scoring_elements	0.85531
published_at	2026-04-09T12:55:00Z

value	0.0257
scoring_system	epss
scoring_elements	0.85522
published_at	2026-04-08T12:55:00Z

value	0.0257
scoring_system	epss
scoring_elements	0.85468
published_at	2026-04-01T12:55:00Z

value	0.0257
scoring_system	epss
scoring_elements	0.85481
published_at	2026-04-02T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2015-0263

reference_url

https://camel.apache.org/security-advisories.data/CVE-2015-0263.txt.asc

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://camel.apache.org/security-advisories.data/CVE-2015-0263.txt.asc

reference_url

https://github.com/advisories/GHSA-3hrc-f439-727g

reference_id

reference_type

scores

value	MODERATE
scoring_system	cvssv3.1_qr
scoring_elements

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://github.com/advisories/GHSA-3hrc-f439-727g

reference_url

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://github.com/apache/camel/commit/06db9e0744f2bb9f6e3bf16c0dfe7099a3481558

reference_url

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://github.com/apache/camel/commit/06db9e0744f2bb9f6e3bf16c0dfe7099a3481558

reference_url

https://github.com/apache/camel/commit/367d53e73c8b5a1e73c24423e631709f9a96e08d

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://github.com/apache/camel/commit/367d53e73c8b5a1e73c24423e631709f9a96e08d

reference_url

https://github.com/apache/camel/commit/7d19340bcdb42f7aae584d9c5003ac4f7ddaee36

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://github.com/apache/camel/commit/7d19340bcdb42f7aae584d9c5003ac4f7ddaee36

reference_url

https://git-wip-us.apache.org/repos/asf?p=camel.git;a=commitdiff;h=7d19340bcdb42f7aae584d9c5003ac4f7ddaee36

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://git-wip-us.apache.org/repos/asf?p=camel.git;a=commitdiff;h=7d19340bcdb42f7aae584d9c5003ac4f7ddaee36

reference_url

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/2318d7f7d87724d8716cd650c21b31cb06e4d34f6d0f5ee42f28fdaf@%3Ccommits.camel.apache.org%3E

reference_url

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/2318d7f7d87724d8716cd650c21b31cb06e4d34f6d0f5ee42f28fdaf@%3Ccommits.camel.apache.org%3E

reference_url

https://lists.apache.org/thread.html/b4014ea7c5830ca1fc28edd5cafedfe93ad4af2d9e69c961c5def31d@%3Ccommits.camel.apache.org%3E

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/b4014ea7c5830ca1fc28edd5cafedfe93ad4af2d9e69c961c5def31d@%3Ccommits.camel.apache.org%3E

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2015-0263

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2015-0263

reference_url	https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-0263
reference_id
reference_type
scores
url	https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-0263

reference_url

http://www.securitytracker.com/id/1032442

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://www.securitytracker.com/id/1032442

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1203344
reference_id	1203344
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1203344

reference_url	http://camel.apache.org/security-advisories.data/CVE-2015-0263.txt.asc?version=1&modificationDate=1426539178000&api=v2
reference_id	CVE-2015-0263.TXT.ASC?VERSION=1&MODIFICATIONDATE=1426539178000&API=V2
reference_type
scores
url	http://camel.apache.org/security-advisories.data/CVE-2015-0263.txt.asc?version=1&modificationDate=1426539178000&api=v2

reference_url	https://access.redhat.com/errata/RHSA-2015:1041
reference_id	RHSA-2015:1041
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2015:1041

reference_url	https://access.redhat.com/errata/RHSA-2015:1538
reference_id	RHSA-2015:1538
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2015:1538

reference_url	https://access.redhat.com/errata/RHSA-2015:1539
reference_id	RHSA-2015:1539
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2015:1539

reference_url	https://access.redhat.com/errata/RHSA-2015:2558
reference_id	RHSA-2015:2558
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2015:2558

fixed_packages

url pkg:maven/org.apache.camel/camel-core@2.13.4

purl pkg:maven/org.apache.camel/camel-core@2.13.4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-579q-qqj8-63gs

vulnerability	VCID-et64-wksj-qyhj

vulnerability	VCID-n8rf-enh6-q3bq

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.camel/camel-core@2.13.4

url pkg:maven/org.apache.camel/camel-core@2.14.2

purl pkg:maven/org.apache.camel/camel-core@2.14.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-579q-qqj8-63gs

vulnerability	VCID-et64-wksj-qyhj

vulnerability	VCID-n8rf-enh6-q3bq

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.camel/camel-core@2.14.2

aliases CVE-2015-0263, GHSA-3hrc-f439-727g

risk_score 3.1

exploitability 0.5

weighted_severity 6.2

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-aard-mgx9-rff2

url VCID-et64-wksj-qyhj

vulnerability_id VCID-et64-wksj-qyhj

summary Apache Camel's Validation Component is vulnerable against SSRF via remote DTDs and XXE.

references

reference_url

http://camel.apache.org/security-advisories.data/CVE-2017-5643.txt.asc?version=1&modificationDate=1489652454000&api=v2

reference_id

reference_type

scores

value	7.4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:N/I:H/A:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

http://camel.apache.org/security-advisories.data/CVE-2017-5643.txt.asc?version=1&modificationDate=1489652454000&api=v2

reference_url

https://access.redhat.com/errata/RHSA-2017:1832

reference_id

reference_type

scores

value	7.4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:N/I:H/A:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://access.redhat.com/errata/RHSA-2017:1832

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-5643.json

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-5643.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2017-5643

reference_id

reference_type

scores

value	0.01398
scoring_system	epss
scoring_elements	0.80489
published_at	2026-04-29T12:55:00Z

value	0.01398
scoring_system	epss
scoring_elements	0.80354
published_at	2026-04-01T12:55:00Z

value	0.01398
scoring_system	epss
scoring_elements	0.8036
published_at	2026-04-02T12:55:00Z

value	0.01398
scoring_system	epss
scoring_elements	0.8038
published_at	2026-04-04T12:55:00Z

value	0.01398
scoring_system	epss
scoring_elements	0.80369
published_at	2026-04-07T12:55:00Z

value	0.01398
scoring_system	epss
scoring_elements	0.80398
published_at	2026-04-08T12:55:00Z

value	0.01398
scoring_system	epss
scoring_elements	0.80408
published_at	2026-04-09T12:55:00Z

value	0.01398
scoring_system	epss
scoring_elements	0.80427
published_at	2026-04-11T12:55:00Z

value	0.01398
scoring_system	epss
scoring_elements	0.80411
published_at	2026-04-12T12:55:00Z

value	0.01398
scoring_system	epss
scoring_elements	0.80405
published_at	2026-04-13T12:55:00Z

value	0.01398
scoring_system	epss
scoring_elements	0.80434
published_at	2026-04-16T12:55:00Z

value	0.01398
scoring_system	epss
scoring_elements	0.80436
published_at	2026-04-18T12:55:00Z

value	0.01398
scoring_system	epss
scoring_elements	0.80439
published_at	2026-04-21T12:55:00Z

value	0.01398
scoring_system	epss
scoring_elements	0.80466
published_at	2026-04-24T12:55:00Z

value	0.01398
scoring_system	epss
scoring_elements	0.80472
published_at	2026-04-26T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2017-5643

reference_url

https://github.com/advisories/GHSA-vq9j-jh62-5hmp

reference_id

reference_type

scores

value	7.4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:N/I:H/A:N

value	HIGH
scoring_system	cvssv3.1_qr
scoring_elements

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/advisories/GHSA-vq9j-jh62-5hmp

reference_url

reference_id

reference_type

scores

value	7.4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:N/I:H/A:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/apache/camel/commit/2c6964ae94d8f9a9c9a32e5ae5a0b794e8b8d3be

reference_url	https://github.com/apache/camel/commit/2c6964ae94d8f9a9c9a32e5ae5a0b794e8b8d3b
reference_id
reference_type
scores
url	https://github.com/apache/camel/commit/2c6964ae94d8f9a9c9a32e5ae5a0b794e8b8d3b

reference_url

reference_id

reference_type

scores

value	7.4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:N/I:H/A:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/apache/camel/commit/2c6964ae94d8f9a9c9a32e5ae5a0b794e8b8d3be

reference_url	https://github.com/apache/camel/commit/87c92b7b38890c217bc76f2c55036e6a5cca9a0
reference_id
reference_type
scores
url	https://github.com/apache/camel/commit/87c92b7b38890c217bc76f2c55036e6a5cca9a0

reference_url	https://github.com/apache/camel/commit/8afc5d1757795fde715902067360af5d90f046d
reference_id
reference_type
scores
url	https://github.com/apache/camel/commit/8afc5d1757795fde715902067360af5d90f046d

reference_url

https://github.com/apache/camel/commit/8afc5d1757795fde715902067360af5d90f046da

reference_id

reference_type

scores

value	7.4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:N/I:H/A:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/apache/camel/commit/8afc5d1757795fde715902067360af5d90f046da

reference_url	https://github.com/apache/camel/commit/9f7376abbff7434794f2c7c2909e02bac232fb5
reference_id
reference_type
scores
url	https://github.com/apache/camel/commit/9f7376abbff7434794f2c7c2909e02bac232fb5

reference_url

https://github.com/apache/camel/commit/9f7376abbff7434794f2c7c2909e02bac232fb5b

reference_id

reference_type

scores

value	7.4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:N/I:H/A:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/apache/camel/commit/9f7376abbff7434794f2c7c2909e02bac232fb5b

reference_url	https://github.com/apache/camel/commit/ec3d0db81ba061b27e934d5ff56e9baca0049eb
reference_id
reference_type
scores
url	https://github.com/apache/camel/commit/ec3d0db81ba061b27e934d5ff56e9baca0049eb

reference_url

https://issues.apache.org/jira/browse/CAMEL-10894

reference_id

reference_type

scores

value	7.4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:N/I:H/A:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://issues.apache.org/jira/browse/CAMEL-10894

reference_url

https://lists.apache.org/thread.html/2318d7f7d87724d8716cd650c21b31cb06e4d34f6d0f5ee42f28fdaf@%3Ccommits.camel.apache.org%3E

reference_id

reference_type

scores

value	7.4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:N/I:H/A:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/2318d7f7d87724d8716cd650c21b31cb06e4d34f6d0f5ee42f28fdaf@%3Ccommits.camel.apache.org%3E

reference_url	https://lists.apache.org/thread.html/2318d7f7d87724d8716cd650c21b31cb06e4d34f6d0f5ee42f28fdaf%40%3Ccommits.camel.apache.org%3E
reference_id
reference_type
scores
url	https://lists.apache.org/thread.html/2318d7f7d87724d8716cd650c21b31cb06e4d34f6d0f5ee42f28fdaf%40%3Ccommits.camel.apache.org%3E

reference_url

https://lists.apache.org/thread.html/b4014ea7c5830ca1fc28edd5cafedfe93ad4af2d9e69c961c5def31d@%3Ccommits.camel.apache.org%3E

reference_id

reference_type

scores

value	7.4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:N/I:H/A:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/b4014ea7c5830ca1fc28edd5cafedfe93ad4af2d9e69c961c5def31d@%3Ccommits.camel.apache.org%3E

reference_url	https://lists.apache.org/thread.html/b4014ea7c5830ca1fc28edd5cafedfe93ad4af2d9e69c961c5def31d%40%3Ccommits.camel.apache.org%3E
reference_id
reference_type
scores
url	https://lists.apache.org/thread.html/b4014ea7c5830ca1fc28edd5cafedfe93ad4af2d9e69c961c5def31d%40%3Ccommits.camel.apache.org%3E

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2017-5643

reference_id

reference_type

scores

value	5.8
scoring_system	cvssv2
scoring_elements	AV:N/AC:M/Au:N/C:P/I:P/A:N

value	7.4
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:N/I:H/A:N

value	7.4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:N/I:H/A:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2017-5643

reference_url

http://www.securityfocus.com/bid/97226

reference_id

reference_type

scores

value	7.4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:N/I:H/A:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

http://www.securityfocus.com/bid/97226

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1433374
reference_id	1433374
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1433374

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:camel::::::::
reference_id	cpe:2.3:a:apache:camel::::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:camel::::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:camel:2.17.0:::::::*
reference_id	cpe:2.3:a:apache:camel:2.17.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:camel:2.17.0:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:camel:2.17.1:::::::*
reference_id	cpe:2.3:a:apache:camel:2.17.1:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:camel:2.17.1:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:camel:2.17.2:::::::*
reference_id	cpe:2.3:a:apache:camel:2.17.2:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:camel:2.17.2:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:camel:2.17.3:::::::*
reference_id	cpe:2.3:a:apache:camel:2.17.3:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:camel:2.17.3:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:camel:2.17.4:::::::*
reference_id	cpe:2.3:a:apache:camel:2.17.4:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:camel:2.17.4:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:camel:2.17.5:::::::*
reference_id	cpe:2.3:a:apache:camel:2.17.5:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:camel:2.17.5:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:camel:2.18.0:::::::*
reference_id	cpe:2.3:a:apache:camel:2.18.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:camel:2.18.0:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:camel:2.18.1:::::::*
reference_id	cpe:2.3:a:apache:camel:2.18.1:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:camel:2.18.1:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:camel:2.18.2:::::::*
reference_id	cpe:2.3:a:apache:camel:2.18.2:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:camel:2.18.2:::::::*

reference_url	https://www.cvedetails.com/cve/CVE-2017-5643/
reference_id	CVE-2017-5643
reference_type
scores
url	https://www.cvedetails.com/cve/CVE-2017-5643/

reference_url	https://camel.apache.org/security-advisories.data/CVE-2017-5643.txt
reference_id	CVE-2017-5643.TXT
reference_type
scores
url	https://camel.apache.org/security-advisories.data/CVE-2017-5643.txt

fixed_packages

url pkg:maven/org.apache.camel/camel-core@2.17.6

purl pkg:maven/org.apache.camel/camel-core@2.17.6

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-579q-qqj8-63gs

vulnerability	VCID-n8rf-enh6-q3bq

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.camel/camel-core@2.17.6

url pkg:maven/org.apache.camel/camel-core@2.18.2

purl pkg:maven/org.apache.camel/camel-core@2.18.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-579q-qqj8-63gs

vulnerability	VCID-et64-wksj-qyhj

vulnerability	VCID-n8rf-enh6-q3bq

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.camel/camel-core@2.18.2

url pkg:maven/org.apache.camel/camel-core@2.18.3

purl pkg:maven/org.apache.camel/camel-core@2.18.3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-579q-qqj8-63gs

vulnerability	VCID-n8rf-enh6-q3bq

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.camel/camel-core@2.18.3

url pkg:maven/org.apache.camel/camel-core@2.19.0

purl pkg:maven/org.apache.camel/camel-core@2.19.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-579q-qqj8-63gs

vulnerability	VCID-n8rf-enh6-q3bq

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.camel/camel-core@2.19.0

aliases CVE-2017-5643, GHSA-vq9j-jh62-5hmp

risk_score 4.0

exploitability 0.5

weighted_severity 8.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-et64-wksj-qyhj

url VCID-m8hb-4rwu-jkcy

vulnerability_id VCID-m8hb-4rwu-jkcy

summary Multiple XML external entity (XXE) vulnerabilities in builder/xml/XPathBuilder.java in Apache Camel before 2.13.4 and 2.14.x before 2.14.2 allow remote attackers to read arbitrary files via an external entity in an invalid XML (1) String or (2) GenericFile object in an XPath query.

references

reference_url	http://camel.apache.org/security-advisories.html
reference_id
reference_type
scores
url	http://camel.apache.org/security-advisories.html

reference_url

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

reference_url

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

reference_url

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://api.first.org/data/v1/epss?cve=CVE-2015-0264

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-0264.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-0264.json

reference_url

reference_id

reference_type

scores

value	0.02016
scoring_system	epss
scoring_elements	0.83793
published_at	2026-04-24T12:55:00Z

value	0.02016
scoring_system	epss
scoring_elements	0.83769
published_at	2026-04-21T12:55:00Z

value	0.02016
scoring_system	epss
scoring_elements	0.83768
published_at	2026-04-16T12:55:00Z

value	0.02016
scoring_system	epss
scoring_elements	0.83734
published_at	2026-04-13T12:55:00Z

value	0.02016
scoring_system	epss
scoring_elements	0.83738
published_at	2026-04-12T12:55:00Z

value	0.02016
scoring_system	epss
scoring_elements	0.83745
published_at	2026-04-11T12:55:00Z

value	0.02016
scoring_system	epss
scoring_elements	0.83698
published_at	2026-04-07T12:55:00Z

value	0.02016
scoring_system	epss
scoring_elements	0.83809
published_at	2026-04-29T12:55:00Z

value	0.02016
scoring_system	epss
scoring_elements	0.83802
published_at	2026-04-26T12:55:00Z

value	0.02016
scoring_system	epss
scoring_elements	0.83696
published_at	2026-04-04T12:55:00Z

value	0.02016
scoring_system	epss
scoring_elements	0.83722
published_at	2026-04-08T12:55:00Z

value	0.02016
scoring_system	epss
scoring_elements	0.83729
published_at	2026-04-09T12:55:00Z

value	0.02016
scoring_system	epss
scoring_elements	0.83669
published_at	2026-04-01T12:55:00Z

value	0.02016
scoring_system	epss
scoring_elements	0.83682
published_at	2026-04-02T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2015-0264

reference_url

https://camel.apache.org/security-advisories.data/CVE-2015-0264.txt.asc

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://camel.apache.org/security-advisories.data/CVE-2015-0264.txt.asc

reference_url

http://securitytracker.com/id/1032442

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://securitytracker.com/id/1032442

reference_url

https://github.com/advisories/GHSA-mhx2-r3jx-g94c

reference_id

reference_type

scores

value	MODERATE
scoring_system	cvssv3.1_qr
scoring_elements

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://github.com/advisories/GHSA-mhx2-r3jx-g94c

reference_url

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://github.com/apache/camel/commit/7360aada5154434c68774aa30e0f21ddc5f27b9f

reference_url	https://github.com/apache/camel/commit/1df559649a96a1ca0368373387e542f46e4820da
reference_id
reference_type
scores
url	https://github.com/apache/camel/commit/1df559649a96a1ca0368373387e542f46e4820da

reference_url

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://github.com/apache/camel/commit/7360aada5154434c68774aa30e0f21ddc5f27b9f

reference_url

https://github.com/apache/camel/commit/b47b51a195b38e7ab7c099d19910af70a16638f6

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://github.com/apache/camel/commit/b47b51a195b38e7ab7c099d19910af70a16638f6

reference_url

https://git-wip-us.apache.org/repos/asf?p=camel.git;a=commitdiff;h=1df559649a96a1ca0368373387e542f46e4820da

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://git-wip-us.apache.org/repos/asf?p=camel.git;a=commitdiff;h=1df559649a96a1ca0368373387e542f46e4820da

reference_url

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url