Skip to main content

CWE-164

Improper Neutralization of Internal Special Elements

2 CVEs Avg CVSS 5.7 MITRE
0
CRITICAL
0
HIGH
2
MEDIUM
0
LOW
1
POC
0
KEV

Monthly

CVE-2025-30177 Maven MEDIUM PATCH This Month

Bypass/Injection vulnerability in Apache Camel in Camel-Undertow component under particular conditions.10.0 before 4.10.3, from 4.8.0 before 4.8.6. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Apache Authentication Bypass Camel Red Hat
NVD
CVSS 3.1
6.5
EPSS
0.8%
CVE-2025-29891 Maven MEDIUM POC PATCH This Month

Bypass/Injection vulnerability in Apache Camel.10.0 before 4.10.2, from 4.8.0 before 4.8.5, from 3.10.0 before 3.22.4. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable, no authentication required. Public exploit code available and no vendor patch available.

Apache Authentication Bypass Camel Red Hat
NVD GitHub
CVSS 3.1
4.8
EPSS
0.1%
EPSS 1% CVSS 6.5
MEDIUM PATCH This Month

Bypass/Injection vulnerability in Apache Camel in Camel-Undertow component under particular conditions.10.0 before 4.10.3, from 4.8.0 before 4.8.6. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Apache Authentication Bypass Camel +1
NVD
EPSS 0% CVSS 4.8
MEDIUM POC PATCH This Month

Bypass/Injection vulnerability in Apache Camel.10.0 before 4.10.2, from 4.8.0 before 4.8.5, from 3.10.0 before 3.22.4. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable, no authentication required. Public exploit code available and no vendor patch available.

Apache Authentication Bypass Camel +1
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy