GHSA-w2v8-8q6c-3rhr
Severity by source
AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Producer-only component has no reachable inbound path, so no confidentiality, integrity, or availability impact actually applies; effectively unexploitable, yielding a near-zero base score.
Primary rating from Vendor (CNA).
CVSS VectorVendor
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Lifecycle Timeline
6Description PRE-NVD
Articles & Coverage 4
AnalysisAI
Improper input validation (CWE-20) in the camel-aws2-sns component of Apache Camel stems from a missing inbound HeaderFilterStrategy rule on Sns2HeaderFilterStrategy, mirroring the flaw fixed in the sibling camel-aws2-sqs component (CVE-2026-46456). However, camel-aws2-sns is producer-only - Sns2Endpoint throws UnsupportedOperationException on createConsumer - so no externally-supplied SNS message attributes are ever mapped inbound into a Camel Exchange, leaving the missing filter rule unreachable by any attacker. …
Unlock full vulnerability intelligence
- Risk assessment & exploitation conditions
- Attack chain visualization
- Remediation with exact patch versions
- Threat intelligence from 22 sources
- Personal watchlist & email alerts
Free forever · No credit card required
Attack ChainAIDerived
Hypothetical attack flow derived from CVE metadata
Vulnerability AssessmentAI
| Exploitation | There is no reachable exploitation condition in camel-aws2-sns because the component is producer-only: Sns2Endpoint.createConsumer throws UnsupportedOperationException ('You cannot receive messages from this endpoint'), so no externally-supplied SNS message attributes are ever mapped inbound into a Camel Exchange, and the missing inbound filter rule cannot be triggered by any attacker-supplied input. … Additional conditions and limiting factors are described in the full assessment. |
| Risk Assessment | This is a textbook case of a high raw CVSS score that does not reflect real-world risk. … Full risk analysis with EPSS, KEV, and SSVC signal comparison available after sign-in. |
| Exploit Scenario | No realistic attack scenario exists for camel-aws2-sns: the component only produces (publishes) messages to SNS and cannot consume, so an attacker cannot deliver crafted message attributes back into a Camel Exchange to inject control headers. The analogous exploitable scenario lives in the SQS sibling (CVE-2026-46456), where a message sender could inject Camel control headers via inbound message attributes mapped by Sqs2Consumer. … |
| Remediation | Vendor-released patch: upgrade to 4.21.0, or 4.14.8 on the 4.14.x LTS stream, or 4.18.3 on the 4.18.x stream - all contain the CAMEL-23506 hardening change. … Detailed patch versions, workarounds, and compensating controls in full report. |
Recommended ActionAI
Within 24 hours: identify all Apache Camel deployments using the camel-aws2-sns component; within 7 days: apply the vendor-released patch to all identified systems during normal maintenance windows; within 30 days: confirm patch deployment and regression-test SNS producer workflows.
Sign in for detailed remediation steps and compensating controls.
Threat intelligence, references, and detailed analysis are available after sign-in.
Bypass/Injection vulnerability in Apache Camel components under particular conditions.10.0 through <= 4.10.1, from 4.8.0
The XSLT component in Apache Camel before 2.11.4 and 2.12.x before 2.12.3 allows remote attackers to read arbitrary file
Apache Camel's Jackson and JacksonXML unmarshalling operation are vulnerable to Remote Code Execution attacks. Rated cri
The XSLT component in Apache Camel 2.11.x before 2.11.4, 2.12.x before 2.12.3, and possibly earlier versions allows remo
Cross-realm token acceptance bypass in Apache Camel Keycloak security policy. The KeycloakSecurityPolicy fails to proper
Deserialization of Untrusted Data vulnerability in Apache Camel LevelDB component. The Camel-LevelDB DefaultLevelDBSeria
The camel-mina component's MinaConverter.toObjectInput(IoBuffer) type converter wraps an IoBuffer in a java.io.ObjectInp
Apache Camel's File is vulnerable to directory traversal. Rated high severity (CVSS 7.5), this vulnerability is remotely
The camel-castor component in Apache Camel 2.x before 2.19.4 and 2.20.x before 2.20.1 is vulnerable to Java object de-se
The camel-xstream component in Apache Camel before 2.15.5 and 2.16.x before 2.16.1 allow remote attackers to execute arb
The camel-hessian component in Apache Camel 2.x before 2.19.4 and 2.20.x before 2.20.1 is vulnerable to Java object de-s
Apache Camel before 2.9.7, 2.10.0 before 2.10.7, 2.11.0 before 2.11.2, and 2.12.0 allows remote attackers to execute arb
Same weakness CWE-20 – Improper Input Validation
View allSame technique Code Injection
View allShare
External POC / Exploit Code
Leaving vuln.today
EUVD-2026-41852