PT-2019-11184 · Apache · Apache Camel

Publicado

2019-04-30

Atualizado

2019-05-24

CVE-2019-0194

CVSS v3.1

7.5

Alta

Vetor

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Name of the Vulnerable Software and Affected Versions: Apache Camel versions 2.19 and earlier Apache Camel versions 2.21.0 through 2.21.3 Apache Camel versions 2.22.0 through 2.22.2 Apache Camel version 2.23.0

Description: The issue concerns directory traversal in Apache Camel's File component.

Recommendations: For versions 2.19 and earlier, consider upgrading to a supported version to mitigate the risk. For versions 2.21.0 through 2.21.3, update to a version outside of this range. For versions 2.22.0 through 2.22.2, update to a version outside of this range. For version 2.23.0, update to a version outside of this range.

Exploit

Correção

Path traversal

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-22

Identificadores relacionados

CVE-2019-0194

GHSA-4WJQ-69RC-8WCP

Produtos afetados

Apache Camel

PT-2019-11184 · Apache · Apache Camel

CVE-2019-0194

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 19