CVE-2017-5643

Summary

Apache Camel's Validation Component is vulnerable against SSRF via remote DTDs and XXE.

Affected Software

VendorProductVersion RangeStatus
Apache Software FoundationApache Camel2.17.0 to 2.17.5affected
Apache Software FoundationApache Camel2.18.0 to 2.18.2affected
Apache Software FoundationApache CamelThe unsupported Camel 2.x (2.16 and earlier) versions may be also affected.affected

Weaknesses

  • SSRF

ADP Enrichment

CVE Program Container

Additional References

References