CVE-2018-8041

CWE-22Path Traversal7 documents7 sources
Severity
5.3MEDIUM
EPSS
2.5%
top 14.72%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Apache CamelApache Software Foundation Apache Camel
Timeline
PublishedSep 17
Latest updateOct 16

Description

Apache Camel's Mail 2.20.0 through 2.20.3, 2.21.0 through 2.21.1 and 2.22.0 is vulnerable to path traversal.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:NExploitability: 3.9 | Impact: 1.4

Affected Packages3 packages

Mavenorg.apache.camel:camel-mail2.20.02.20.4+2
NVDapache/camel2.20.02.20.3+2
CVEListV5apache_software_foundation/apache_camelCamel 2.20.0 to 2.20.3, Camel 2.21.0 to 2.21.1 and Camel 2.22.0

🔴Vulnerability Details

3
GHSA
Apache Camel's Mail is vulnerable to path traversal2018-10-16
OSV
Apache Camel's Mail is vulnerable to path traversal2018-10-16
CVEList
CVE-2018-8041: Apache Camel's Mail 22018-09-17

📋Vendor Advisories

2
Red Hat
camel-mail: path traversal vulnerability2018-06-09
Apache
Apache camel: CVE-2018-8041

💬Community

1
Bugzilla
CVE-2018-8041 camel-mail: path traversal vulnerability2018-08-06
CVE-2018-8041 (MEDIUM CVSS 5.3) | Apache Camel's Mail 2.20.0 through | cvebase.io