Django REST framework

Lookup for vulnerabilities affecting packages.

Vulnerability_id VCID-813c-avht-8qc9

Summary

Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
The camel-xstream component in Apache Camel before 2.15.5 and 2.16.x before 2.16.1 allow remote attackers to execute arbitrary commands via a crafted serialized Java object in an HTTP request.

Aliases

alias	CVE-2015-5344

alias	GHSA-gv5f-cjw9-5vxg

Fixed_packages

url	pkg:maven/org.apache.camel/camel-xstream@2.15.5
purl	pkg:maven/org.apache.camel/camel-xstream@2.15.5
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.camel/camel-xstream@2.15.5

url	pkg:maven/org.apache.camel/camel-xstream@2.16.1
purl	pkg:maven/org.apache.camel/camel-xstream@2.16.1
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.camel/camel-xstream@2.16.1

Affected_packages

url pkg:maven/org.apache.camel/camel-xstream@1.6.1

purl pkg:maven/org.apache.camel/camel-xstream@1.6.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-813c-avht-8qc9

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.camel/camel-xstream@1.6.1

url pkg:maven/org.apache.camel/camel-xstream@1.6.2

purl pkg:maven/org.apache.camel/camel-xstream@1.6.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-813c-avht-8qc9

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.camel/camel-xstream@1.6.2

url pkg:maven/org.apache.camel/camel-xstream@1.6.3

purl pkg:maven/org.apache.camel/camel-xstream@1.6.3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-813c-avht-8qc9

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.camel/camel-xstream@1.6.3

url pkg:maven/org.apache.camel/camel-xstream@1.6.4

purl pkg:maven/org.apache.camel/camel-xstream@1.6.4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-813c-avht-8qc9

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.camel/camel-xstream@1.6.4

url pkg:maven/org.apache.camel/camel-xstream@2.0-M2

purl pkg:maven/org.apache.camel/camel-xstream@2.0-M2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-813c-avht-8qc9

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.camel/camel-xstream@2.0-M2

url pkg:maven/org.apache.camel/camel-xstream@2.0-M3

purl pkg:maven/org.apache.camel/camel-xstream@2.0-M3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-813c-avht-8qc9

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.camel/camel-xstream@2.0-M3

url pkg:maven/org.apache.camel/camel-xstream@2.0.0

purl pkg:maven/org.apache.camel/camel-xstream@2.0.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-813c-avht-8qc9

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.camel/camel-xstream@2.0.0

url pkg:maven/org.apache.camel/camel-xstream@2.1.0

purl pkg:maven/org.apache.camel/camel-xstream@2.1.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-813c-avht-8qc9

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.camel/camel-xstream@2.1.0

url pkg:maven/org.apache.camel/camel-xstream@2.2.0

purl pkg:maven/org.apache.camel/camel-xstream@2.2.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-813c-avht-8qc9

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.camel/camel-xstream@2.2.0

url pkg:maven/org.apache.camel/camel-xstream@2.3.0

purl pkg:maven/org.apache.camel/camel-xstream@2.3.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-813c-avht-8qc9

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.camel/camel-xstream@2.3.0

url pkg:maven/org.apache.camel/camel-xstream@2.4.0

purl pkg:maven/org.apache.camel/camel-xstream@2.4.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-813c-avht-8qc9

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.camel/camel-xstream@2.4.0

url pkg:maven/org.apache.camel/camel-xstream@2.5.0

purl pkg:maven/org.apache.camel/camel-xstream@2.5.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-813c-avht-8qc9

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.camel/camel-xstream@2.5.0

url pkg:maven/org.apache.camel/camel-xstream@2.6.0

purl pkg:maven/org.apache.camel/camel-xstream@2.6.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-813c-avht-8qc9

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.camel/camel-xstream@2.6.0

url pkg:maven/org.apache.camel/camel-xstream@2.7.0

purl pkg:maven/org.apache.camel/camel-xstream@2.7.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-813c-avht-8qc9

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.camel/camel-xstream@2.7.0

url pkg:maven/org.apache.camel/camel-xstream@2.7.1

purl pkg:maven/org.apache.camel/camel-xstream@2.7.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-813c-avht-8qc9

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.camel/camel-xstream@2.7.1

url pkg:maven/org.apache.camel/camel-xstream@2.7.2

purl pkg:maven/org.apache.camel/camel-xstream@2.7.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-813c-avht-8qc9

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.camel/camel-xstream@2.7.2

url pkg:maven/org.apache.camel/camel-xstream@2.7.3

purl pkg:maven/org.apache.camel/camel-xstream@2.7.3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-813c-avht-8qc9

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.camel/camel-xstream@2.7.3

url pkg:maven/org.apache.camel/camel-xstream@2.7.4

purl pkg:maven/org.apache.camel/camel-xstream@2.7.4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-813c-avht-8qc9

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.camel/camel-xstream@2.7.4

url pkg:maven/org.apache.camel/camel-xstream@2.7.5

purl pkg:maven/org.apache.camel/camel-xstream@2.7.5

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-813c-avht-8qc9

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.camel/camel-xstream@2.7.5

url pkg:maven/org.apache.camel/camel-xstream@2.8.0

purl pkg:maven/org.apache.camel/camel-xstream@2.8.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-813c-avht-8qc9

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.camel/camel-xstream@2.8.0

url pkg:maven/org.apache.camel/camel-xstream@2.8.1

purl pkg:maven/org.apache.camel/camel-xstream@2.8.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-813c-avht-8qc9

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.camel/camel-xstream@2.8.1

url pkg:maven/org.apache.camel/camel-xstream@2.8.2

purl pkg:maven/org.apache.camel/camel-xstream@2.8.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-813c-avht-8qc9

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.camel/camel-xstream@2.8.2

url pkg:maven/org.apache.camel/camel-xstream@2.8.3

purl pkg:maven/org.apache.camel/camel-xstream@2.8.3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-813c-avht-8qc9

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.camel/camel-xstream@2.8.3

url pkg:maven/org.apache.camel/camel-xstream@2.8.4

purl pkg:maven/org.apache.camel/camel-xstream@2.8.4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-813c-avht-8qc9

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.camel/camel-xstream@2.8.4

url pkg:maven/org.apache.camel/camel-xstream@2.8.5

purl pkg:maven/org.apache.camel/camel-xstream@2.8.5

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-813c-avht-8qc9

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.camel/camel-xstream@2.8.5

url pkg:maven/org.apache.camel/camel-xstream@2.8.6

purl pkg:maven/org.apache.camel/camel-xstream@2.8.6

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-813c-avht-8qc9

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.camel/camel-xstream@2.8.6

url pkg:maven/org.apache.camel/camel-xstream@2.9.0-RC1

purl pkg:maven/org.apache.camel/camel-xstream@2.9.0-RC1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-813c-avht-8qc9

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.camel/camel-xstream@2.9.0-RC1

url pkg:maven/org.apache.camel/camel-xstream@2.9.0

purl pkg:maven/org.apache.camel/camel-xstream@2.9.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-813c-avht-8qc9

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.camel/camel-xstream@2.9.0

url pkg:maven/org.apache.camel/camel-xstream@2.9.1

purl pkg:maven/org.apache.camel/camel-xstream@2.9.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-813c-avht-8qc9

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.camel/camel-xstream@2.9.1

url pkg:maven/org.apache.camel/camel-xstream@2.9.2

purl pkg:maven/org.apache.camel/camel-xstream@2.9.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-813c-avht-8qc9

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.camel/camel-xstream@2.9.2

url pkg:maven/org.apache.camel/camel-xstream@2.9.3

purl pkg:maven/org.apache.camel/camel-xstream@2.9.3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-813c-avht-8qc9

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.camel/camel-xstream@2.9.3

url pkg:maven/org.apache.camel/camel-xstream@2.9.4

purl pkg:maven/org.apache.camel/camel-xstream@2.9.4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-813c-avht-8qc9

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.camel/camel-xstream@2.9.4

url pkg:maven/org.apache.camel/camel-xstream@2.9.5

purl pkg:maven/org.apache.camel/camel-xstream@2.9.5

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-813c-avht-8qc9

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.camel/camel-xstream@2.9.5

url pkg:maven/org.apache.camel/camel-xstream@2.9.6

purl pkg:maven/org.apache.camel/camel-xstream@2.9.6

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-813c-avht-8qc9

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.camel/camel-xstream@2.9.6

url pkg:maven/org.apache.camel/camel-xstream@2.9.7

purl pkg:maven/org.apache.camel/camel-xstream@2.9.7

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-813c-avht-8qc9

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.camel/camel-xstream@2.9.7

url pkg:maven/org.apache.camel/camel-xstream@2.9.8

purl pkg:maven/org.apache.camel/camel-xstream@2.9.8

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-813c-avht-8qc9

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.camel/camel-xstream@2.9.8

url pkg:maven/org.apache.camel/camel-xstream@2.10.0

purl pkg:maven/org.apache.camel/camel-xstream@2.10.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-813c-avht-8qc9

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.camel/camel-xstream@2.10.0

url pkg:maven/org.apache.camel/camel-xstream@2.10.1

purl pkg:maven/org.apache.camel/camel-xstream@2.10.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-813c-avht-8qc9

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.camel/camel-xstream@2.10.1

url pkg:maven/org.apache.camel/camel-xstream@2.10.2

purl pkg:maven/org.apache.camel/camel-xstream@2.10.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-813c-avht-8qc9

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.camel/camel-xstream@2.10.2

url pkg:maven/org.apache.camel/camel-xstream@2.10.3

purl pkg:maven/org.apache.camel/camel-xstream@2.10.3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-813c-avht-8qc9

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.camel/camel-xstream@2.10.3

url pkg:maven/org.apache.camel/camel-xstream@2.10.4

purl pkg:maven/org.apache.camel/camel-xstream@2.10.4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-813c-avht-8qc9

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.camel/camel-xstream@2.10.4

url pkg:maven/org.apache.camel/camel-xstream@2.10.5

purl pkg:maven/org.apache.camel/camel-xstream@2.10.5

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-813c-avht-8qc9

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.camel/camel-xstream@2.10.5

url pkg:maven/org.apache.camel/camel-xstream@2.10.6

purl pkg:maven/org.apache.camel/camel-xstream@2.10.6

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-813c-avht-8qc9

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.camel/camel-xstream@2.10.6

url pkg:maven/org.apache.camel/camel-xstream@2.10.7

purl pkg:maven/org.apache.camel/camel-xstream@2.10.7

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-813c-avht-8qc9

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.camel/camel-xstream@2.10.7

url pkg:maven/org.apache.camel/camel-xstream@2.11.0

purl pkg:maven/org.apache.camel/camel-xstream@2.11.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-813c-avht-8qc9

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.camel/camel-xstream@2.11.0

url pkg:maven/org.apache.camel/camel-xstream@2.11.1

purl pkg:maven/org.apache.camel/camel-xstream@2.11.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-813c-avht-8qc9

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.camel/camel-xstream@2.11.1

url pkg:maven/org.apache.camel/camel-xstream@2.11.2

purl pkg:maven/org.apache.camel/camel-xstream@2.11.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-813c-avht-8qc9

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.camel/camel-xstream@2.11.2

url pkg:maven/org.apache.camel/camel-xstream@2.11.3

purl pkg:maven/org.apache.camel/camel-xstream@2.11.3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-813c-avht-8qc9

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.camel/camel-xstream@2.11.3

url pkg:maven/org.apache.camel/camel-xstream@2.11.4

purl pkg:maven/org.apache.camel/camel-xstream@2.11.4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-813c-avht-8qc9

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.camel/camel-xstream@2.11.4

url pkg:maven/org.apache.camel/camel-xstream@2.12.0

purl pkg:maven/org.apache.camel/camel-xstream@2.12.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-813c-avht-8qc9

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.camel/camel-xstream@2.12.0

url pkg:maven/org.apache.camel/camel-xstream@2.12.1

purl pkg:maven/org.apache.camel/camel-xstream@2.12.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-813c-avht-8qc9

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.camel/camel-xstream@2.12.1

url pkg:maven/org.apache.camel/camel-xstream@2.12.2

purl pkg:maven/org.apache.camel/camel-xstream@2.12.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-813c-avht-8qc9

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.camel/camel-xstream@2.12.2

url pkg:maven/org.apache.camel/camel-xstream@2.12.3

purl pkg:maven/org.apache.camel/camel-xstream@2.12.3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-813c-avht-8qc9

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.camel/camel-xstream@2.12.3

url pkg:maven/org.apache.camel/camel-xstream@2.12.4

purl pkg:maven/org.apache.camel/camel-xstream@2.12.4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-813c-avht-8qc9

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.camel/camel-xstream@2.12.4

url pkg:maven/org.apache.camel/camel-xstream@2.12.5

purl pkg:maven/org.apache.camel/camel-xstream@2.12.5

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-813c-avht-8qc9

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.camel/camel-xstream@2.12.5

url pkg:maven/org.apache.camel/camel-xstream@2.13.0

purl pkg:maven/org.apache.camel/camel-xstream@2.13.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-813c-avht-8qc9

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.camel/camel-xstream@2.13.0

url pkg:maven/org.apache.camel/camel-xstream@2.13.1

purl pkg:maven/org.apache.camel/camel-xstream@2.13.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-813c-avht-8qc9

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.camel/camel-xstream@2.13.1

url pkg:maven/org.apache.camel/camel-xstream@2.13.2

purl pkg:maven/org.apache.camel/camel-xstream@2.13.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-813c-avht-8qc9

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.camel/camel-xstream@2.13.2

url pkg:maven/org.apache.camel/camel-xstream@2.13.3

purl pkg:maven/org.apache.camel/camel-xstream@2.13.3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-813c-avht-8qc9

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.camel/camel-xstream@2.13.3

url pkg:maven/org.apache.camel/camel-xstream@2.13.4

purl pkg:maven/org.apache.camel/camel-xstream@2.13.4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-813c-avht-8qc9

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.camel/camel-xstream@2.13.4

url pkg:maven/org.apache.camel/camel-xstream@2.14.0

purl pkg:maven/org.apache.camel/camel-xstream@2.14.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-813c-avht-8qc9

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.camel/camel-xstream@2.14.0

url pkg:maven/org.apache.camel/camel-xstream@2.14.1

purl pkg:maven/org.apache.camel/camel-xstream@2.14.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-813c-avht-8qc9

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.camel/camel-xstream@2.14.1

url pkg:maven/org.apache.camel/camel-xstream@2.14.2

purl pkg:maven/org.apache.camel/camel-xstream@2.14.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-813c-avht-8qc9

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.camel/camel-xstream@2.14.2

url pkg:maven/org.apache.camel/camel-xstream@2.14.3

purl pkg:maven/org.apache.camel/camel-xstream@2.14.3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-813c-avht-8qc9

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.camel/camel-xstream@2.14.3

url pkg:maven/org.apache.camel/camel-xstream@2.14.4

purl pkg:maven/org.apache.camel/camel-xstream@2.14.4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-813c-avht-8qc9

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.camel/camel-xstream@2.14.4

url pkg:maven/org.apache.camel/camel-xstream@2.15.0

purl pkg:maven/org.apache.camel/camel-xstream@2.15.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-813c-avht-8qc9

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.camel/camel-xstream@2.15.0

url pkg:maven/org.apache.camel/camel-xstream@2.15.1

purl pkg:maven/org.apache.camel/camel-xstream@2.15.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-813c-avht-8qc9

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.camel/camel-xstream@2.15.1

url pkg:maven/org.apache.camel/camel-xstream@2.15.2

purl pkg:maven/org.apache.camel/camel-xstream@2.15.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-813c-avht-8qc9

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.camel/camel-xstream@2.15.2

url pkg:maven/org.apache.camel/camel-xstream@2.15.3

purl pkg:maven/org.apache.camel/camel-xstream@2.15.3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-813c-avht-8qc9

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.camel/camel-xstream@2.15.3

url pkg:maven/org.apache.camel/camel-xstream@2.15.4

purl pkg:maven/org.apache.camel/camel-xstream@2.15.4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-813c-avht-8qc9

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.camel/camel-xstream@2.15.4

url pkg:maven/org.apache.camel/camel-xstream@2.16.0

purl pkg:maven/org.apache.camel/camel-xstream@2.16.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-813c-avht-8qc9

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.camel/camel-xstream@2.16.0

References

reference_url

http://camel.apache.org/security-advisories.data/CVE-2015-5344.txt.asc

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

http://camel.apache.org/security-advisories.data/CVE-2015-5344.txt.asc

reference_url

http://rhn.redhat.com/errata/RHSA-2016-2035.html

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

http://rhn.redhat.com/errata/RHSA-2016-2035.html

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-5344.json

reference_id

reference_type

scores

value	4.2
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-5344.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2015-5344

reference_id

reference_type

scores

value	0.04974
scoring_system	epss
scoring_elements	0.89877
published_at	2026-06-05T12:55:00Z

value	0.04974
scoring_system	epss
scoring_elements	0.89861
published_at	2026-06-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2015-5344

reference_url

https://github.com/apache/camel

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://github.com/apache/camel

reference_url

https://github.com/apache/camel/commit/157c0b4a3c8017de432f1c99f83e374e97dc4d36

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://github.com/apache/camel/commit/157c0b4a3c8017de432f1c99f83e374e97dc4d36

reference_url

https://github.com/apache/camel/commit/369d0a6d605055cb843e7962b101e3bbcd113fec

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://github.com/apache/camel/commit/369d0a6d605055cb843e7962b101e3bbcd113fec

reference_url

https://github.com/apache/camel/commit/4491c080cb6c8659fc05441e49307b7d4349aa56

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://github.com/apache/camel/commit/4491c080cb6c8659fc05441e49307b7d4349aa56

reference_url

https://github.com/apache/camel/commit/4cdc6b177ee7391eedc9f0b695c05d56f84b0812

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://github.com/apache/camel/commit/4cdc6b177ee7391eedc9f0b695c05d56f84b0812

reference_url

https://github.com/apache/camel/commit/8386d8f7260143802553bc6dbae2880d6c0bafda

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://github.com/apache/camel/commit/8386d8f7260143802553bc6dbae2880d6c0bafda

reference_url

https://github.com/apache/camel/commit/b7afb3769a38b8e526f8046414d4a71430d77df0

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://github.com/apache/camel/commit/b7afb3769a38b8e526f8046414d4a71430d77df0

reference_url

https://github.com/apache/camel/commit/f07a33c467adb3d37aa8192698caadfee43a17dc

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://github.com/apache/camel/commit/f07a33c467adb3d37aa8192698caadfee43a17dc

reference_url

https://issues.apache.org/jira/browse/CAMEL-9297

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://issues.apache.org/jira/browse/CAMEL-9297

reference_url

https://lists.apache.org/thread.html/2318d7f7d87724d8716cd650c21b31cb06e4d34f6d0f5ee42f28fdaf@%3Ccommits.camel.apache.org%3E

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/2318d7f7d87724d8716cd650c21b31cb06e4d34f6d0f5ee42f28fdaf@%3Ccommits.camel.apache.org%3E

reference_url

https://lists.apache.org/thread.html/b4014ea7c5830ca1fc28edd5cafedfe93ad4af2d9e69c961c5def31d@%3Ccommits.camel.apache.org%3E

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/b4014ea7c5830ca1fc28edd5cafedfe93ad4af2d9e69c961c5def31d@%3Ccommits.camel.apache.org%3E

reference_url

http://www.securityfocus.com/archive/1/537414/100/0/threaded

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

http://www.securityfocus.com/archive/1/537414/100/0/threaded

reference_url

http://www.securityfocus.com/bid/82260

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

http://www.securityfocus.com/bid/82260

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1303609
reference_id	1303609
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1303609

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2015-5344

reference_id

CVE-2015-5344

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2015-5344

reference_url

https://github.com/advisories/GHSA-gv5f-cjw9-5vxg

reference_id

GHSA-gv5f-cjw9-5vxg

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	cvssv3.1_qr
scoring_elements

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://github.com/advisories/GHSA-gv5f-cjw9-5vxg

reference_url	https://access.redhat.com/errata/RHSA-2016:2035
reference_id	RHSA-2016:2035
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2016:2035

Weaknesses

cwe_id	1035
name	OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities
description	Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2017.

cwe_id	19
name	Data Processing Errors
description	Weaknesses in this category are typically found in functionality that processes data. Data processing is the manipulation of input to retrieve or save information.

cwe_id	78
name	Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
description	The product constructs all or part of an OS command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended OS command when it is sent to a downstream component.

cwe_id	937
name	OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities
description	Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2013.

cwe_id	502
name	Deserialization of Untrusted Data
description	The product deserializes untrusted data without sufficiently verifying that the resulting data will be valid.

Exploits

Severity_range_score 4.2 - 10.0

Exploitability 0.5

Weighted_severity 9.0

Risk_score 4.5

Resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-813c-avht-8qc9

Vulnerability Instance