VDB
CVE-2018-8041
CVE-2018-8041
PUBLISHED
CVSS 5.300000190734863 MEDIUM
Apache Camel's Mail 2.20.0 through 2.20.3, 2.21.0 through 2.21.1 and 2.22.0 is vulnerable to path traversal.
EPSS 2.47% · 85.6th percentile
Risk Scores
CVSS 3.0
5.300000190734863
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
EPSS Score
2.47%
85.6th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Apache Software Foundation | Apache Camel | Camel 2.20.0 to 2.20.3, Camel 2.21.0 to 2.21.1 and Camel 2.22.0 |
| Maven | org.apache.camel:camel-mail | 2.20.0, 2.21.0, 2.22.0 |
| apache | camel | 2.21.0, 2.22.0, 2.20.0 |
Exploit Intelligence
- shoucheng3/apache__camel_CVE-2018-8041_2-20-3 (github-poc)
- shoucheng3/apache__camel_CVE-2018-8041_2-20-3 (github-poc)
- shoucheng3/apache__camel_CVE-2018-8041_2-20-3 (github-poc)
- shoucheng3/apache__camel_CVE-2018-8041_2-20-3 (github-poc)
- shoucheng3/apache__camel_CVE-2018-8041_2-20-3 (github-poc)
- CIRCL seen: CVE-2018-8041 (circl-sighting)
- http://camel.apache.org/security-advisories.data/CVE-2018-8041.txt.asc?version=1&modificationDate=1536746339000&api=v2 (circl)
- 105352 (circl)
- https://issues.apache.org/jira/browse/CAMEL-12630 (circl)
- RHSA-2018:3768 (circl)
…and 2 more exploits
Timeline
- Sep 17, 2018 CVE Published
- Apr 14, 2021 EPSS Score
- Jun 23, 2021 EPSS Score
- Oct 26, 2021 EPSS Score
- Dec 27, 2021 EPSS Score
- Feb 28, 2022 EPSS Score
- May 2, 2022 EPSS Score
- Jul 3, 2022 EPSS Score
- Nov 6, 2022 EPSS Score
- Jan 8, 2023 EPSS Score
- Mar 7, 2023 EPSS Score
- May 13, 2023 EPSS Score
References
- http://camel.apache.org/security-advisories.data/CVE-2018-8041.txt.asc?version=1&modificationDate=1536746339000&api=v2 url
- 105352 vdb
- https://issues.apache.org/jira/browse/CAMEL-12630 url
- RHSA-2018:3768 vendor-advisory
- [camel-commits] 20190430 svn commit: r1044347 - in /websites/production/camel/content: cache/main.pageCache security-advisories.data/CVE-2019-0194.txt.asc security-advisories.html mailing-list
- [camel-commits] 20190524 svn commit: r1045395 - in /websites/production/camel/content: cache/main.pageCache security-advisories.data/CVE-2019-0188.txt.asc security-advisories.html mailing-list
- https://nvd.nist.gov/vuln/detail/CVE-2018-8041 advisory
- https://github.com/apache/camel/commit/4580e4d6c65cfd544c1791c824b5819477c583cc url
- https://github.com/apache/camel/commit/4f401c09d22c45c94fa97746dc31905e06b19e3 url
- https://github.com/apache/camel/commit/63c7c080de4d18f9ceb25843508710df2c2c6d4 url
- https://github.com/apache/camel/commit/a0d25d9582c6ee85e9567fa39413df0b4f02ef7 url
- https://github.com/advisories/GHSA-jv74-f9pj-xp3f advisory
- https://github.com/apache/camel package
- https://lists.apache.org/thread.html/2318d7f7d87724d8716cd650c21b31cb06e4d34f6d0f5ee42f28fdaf@%3Ccommits.camel.apache.org%3E url
- https://lists.apache.org/thread.html/b4014ea7c5830ca1fc28edd5cafedfe93ad4af2d9e69c961c5def31d@%3Ccommits.camel.apache.org%3E url