Apache Camel CVE-2017-12633 Deserialization Remote Code Execution Vulnerability

Bugtraq ID: 101874
Class: Design Error
CVE: CVE-2017-12633
Remote: Yes
Local: No
Published: Nov 15 2017 12:00AM
Updated: Dec 12 2017 02:11AM
Credit: Moritz Bechler from AgNO3 GmbH & Co.
Vulnerable: Redhat JBoss Fuse 6.0
Apache Camel 2.20
Apache Camel 2.19
Apache Camel 2.18.2
Apache Camel 2.18.1
Apache Camel 2.18
Apache Camel 2.17.5
Apache Camel 2.17.4
Apache Camel 2.17.3
Apache Camel 2.17.2
Apache Camel 2.17.1
Apache Camel 2.17
Apache Camel 2.13.2
Apache Camel 2.13
Apache Camel 2.10.3
Apache Camel 2.10.1
Apache Camel 2.9.6
Apache Camel 2.9.5
Apache Camel 2.9.8
Apache Camel 2.9.7
Apache Camel 2.9.4
Apache Camel 2.9.3
Apache Camel 2.9.2
Apache Camel 2.9.1
Apache Camel 2.9.0
Apache Camel 2.8.6
Apache Camel 2.8.5
Apache Camel 2.8.4
Apache Camel 2.8.3
Apache Camel 2.8.2
Apache Camel 2.8.1
Apache Camel 2.8.0
Apache Camel 2.7.5
Apache Camel 2.7.4
Apache Camel 2.7.3
Apache Camel 2.7.2
Apache Camel 2.7.1
Apache Camel 2.7.0
Apache Camel 2.6.0
Apache Camel 2.5.0
Apache Camel 2.4.0
Apache Camel 2.3.0
Apache Camel 2.2.0
Apache Camel 2.18.3
Apache Camel 2.17.6
Apache Camel 2.16.5
Apache Camel 2.16.4
Apache Camel 2.16.3
Apache Camel 2.16.2
Apache Camel 2.16.1
Apache Camel 2.16.0
Apache Camel 2.15.5
Apache Camel 2.14.2
Apache Camel 2.14.1
Apache Camel 2.14.0
Apache Camel 2.14
Apache Camel 2.13.4
Apache Camel 2.13.3
Apache Camel 2.13.1
Apache Camel 2.12.2
Apache Camel 2.12.1
Apache Camel 2.12.0
Apache Camel 2.11.3
Apache Camel 2.11.2
Apache Camel 2.11.1
Apache Camel 2.11.0
Apache Camel 2.10.7
Apache Camel 2.10.6
Apache Camel 2.10.5
Apache Camel 2.10.4
Apache Camel 2.10.2
Apache Camel 2.10.0
Apache Camel 2.1.0
Not Vulnerable: Apache Camel 2.20.1
Apache Camel 2.19.4


 

Privacy Statement
Copyright 2010, SecurityFocus