CVE-2020-11994
published 2020-07-08CVE-2020-11994: Server-Side Template Injection and arbitrary file disclosure on Camel templating components
high7.5CVSS 3.1
AVNACLPRNUINSUCHINAN
Server-Side Template Injection and arbitrary file disclosure on Camel templating components
Affected
10 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| apache | camel | — | — |
| apache | camel | — | — |
| apache | camel | — | — |
| apache | camel | 2.22.0 – 2.22.5 | — |
| apache | camel | 2.23.0 – 2.23.4 | — |
| apache | camel | 2.24.0 – 2.24.3 | — |
| apache | camel | 3.0.0 – 3.3.0 | — |
| oracle | communications_diameter_signaling_router | 8.0.0 – 8.5.0 | — |
| oracle | enterprise_manager_base_platform | — | — |
| oracle | enterprise_repository | — | — |