Vulnerability Description
Apache Camel's Mail 2.20.0 through 2.20.3, 2.21.0 through 2.21.1 and 2.22.0 is vulnerable to path traversal.
CVSS Score
5.3
MEDIUM
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Apache | Camel | >= 2.20.0, <= 2.20.3 |
Related Weaknesses (CWE)
References
- http://camel.apache.org/security-advisories.data/CVE-2018-8041.txt.asc?version=1Mailing ListVendor Advisory
- http://www.securityfocus.com/bid/105352Third Party AdvisoryVDB Entry
- https://access.redhat.com/errata/RHSA-2018:3768Third Party Advisory
- https://issues.apache.org/jira/browse/CAMEL-12630Issue TrackingVendor Advisory
- https://lists.apache.org/thread.html/2318d7f7d87724d8716cd650c21b31cb06e4d34f6d0
- https://lists.apache.org/thread.html/b4014ea7c5830ca1fc28edd5cafedfe93ad4af2d9e6
- http://camel.apache.org/security-advisories.data/CVE-2018-8041.txt.asc?version=1Mailing ListVendor Advisory
- http://www.securityfocus.com/bid/105352Third Party AdvisoryVDB Entry
- https://access.redhat.com/errata/RHSA-2018:3768Third Party Advisory
- https://issues.apache.org/jira/browse/CAMEL-12630Issue TrackingVendor Advisory
- https://lists.apache.org/thread.html/2318d7f7d87724d8716cd650c21b31cb06e4d34f6d0
- https://lists.apache.org/thread.html/b4014ea7c5830ca1fc28edd5cafedfe93ad4af2d9e6
FAQ
What is CVE-2018-8041?
CVE-2018-8041 is a vulnerability with a CVSS score of 5.3 (MEDIUM). Apache Camel's Mail 2.20.0 through 2.20.3, 2.21.0 through 2.21.1 and 2.22.0 is vulnerable to path traversal.
How severe is CVE-2018-8041?
CVE-2018-8041 has been rated MEDIUM with a CVSS base score of 5.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2018-8041?
Check the references section above for vendor advisories and patch information. Affected products include: Apache Camel.