Red hat integration camel quarkus

This hub aggregates every CVE we track for Red hat integration camel quarkus, a product in the oss libraries space. Use it to gauge the current risk picture and drill into individual advisories.

Severity distribution

Monthly trend

The 15 most recently published vulnerabilities affecting Red hat integration camel quarkus.

• CVE-2023-4639Undertow: cookie smuggling/spoofing7.4Nov 17, 2024
• CVE-2023-39410Apache Avro Java SDK: Memory when deserializing untrusted data in Avro Java SDK7.5Sep 29, 2023
• CVE-2022-4245Codehaus-plexus: xml external entity (xxe) injection4.3Sep 25, 2023
• CVE-2022-4244Codehaus-plexus: directory traversal7.5Sep 25, 2023
• CVE-2023-4853Quarkus: http security policy bypass8.1Sep 20, 2023
• CVE-2023-40167Jetty accepts "+" prefixed value in Content-Length5.3Sep 15, 2023
• CVE-2023-1108Undertow: infinite loop in sslconduit during close7.5Sep 14, 2023
• CVE-2022-1415Drools: unsafe data deserialization in streamutils8.1Sep 11, 2023
• CVE-2023-33008Apache Johnzon: Prevent inefficient internal conversion from BigDecimal at large scale5.3Jul 7, 2023
• CVE-2023-34462netty-handler SniHandler 16MB allocation6.5Jun 22, 2023
• CVE-2023-26049Cookie parsing of quoted values can exfiltrate values from other cookies in Eclipse Jetty2.4Apr 18, 2023
• CVE-2023-26048OutOfMemoryError for large multipart without filename in Eclipse Jetty5.3Apr 18, 2023
• CVE-2021-46877jackson-databind 2.10.x through 2.12.x before 2.12.6 and 2.13.x before 2.13.1 allows attackers to cause a denial of service (2 GB transient heap usage per read) in uncommon situations involving Jso...7.5Mar 18, 2023
• CVE-2022-41966XStream Denial of Service via stack overflow 8.2Dec 27, 2022
• CVE-2022-46175JSON5 is an extension to the popular JSON file format that aims to be easier to write and maintain by hand (e.g. for config files). The `parse` method of the JSON5 library before and including vers...7.1Dec 24, 2022