Skip to main content

CWE-164

Improper Neutralization of Internal Special Elements

2 CVEs Avg CVSS 5.7 MITRE
0
CRITICAL
0
HIGH
2
MEDIUM
0
LOW
1
POC
0
KEV

Monthly

CVE-2025-30177 Maven MEDIUM PATCH This Month

Bypass/Injection vulnerability in Apache Camel in Camel-Undertow component under particular conditions.10.0 before 4.10.3, from 4.8.0 before 4.8.6. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Apache Red Hat Camel
NVD
CVSS 3.1
6.5
EPSS
0.8%
CVE-2025-29891 Maven MEDIUM POC PATCH This Month

Bypass/Injection vulnerability in Apache Camel.10.0 before 4.10.2, from 4.8.0 before 4.8.5, from 3.10.0 before 3.22.4. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable, no authentication required. Public exploit code available and no vendor patch available.

Authentication Bypass Apache Red Hat Camel
NVD GitHub
CVSS 3.1
4.8
EPSS
0.1%
CVE-2025-30177 Maven
EPSS 1% CVSS 6.5
MEDIUM PATCH This Month

Bypass/Injection vulnerability in Apache Camel in Camel-Undertow component under particular conditions.10.0 before 4.10.3, from 4.8.0 before 4.8.6. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Apache Red Hat +1
NVD
CVE-2025-29891 Maven
EPSS 0% CVSS 4.8
MEDIUM POC PATCH This Month

Bypass/Injection vulnerability in Apache Camel.10.0 before 4.10.2, from 4.8.0 before 4.8.5, from 3.10.0 before 3.22.4. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable, no authentication required. Public exploit code available and no vendor patch available.

Authentication Bypass Apache Red Hat +1
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy