CVE-2017-12634

The camel-castor component in Apache Camel 2.x before 2.19.4 and 2.20.x before 2.20.1 is vulnerable to Java object de-serialisation vulnerability. De-serializing untrusted data can lead to security flaws.

Date published : 2017-11-15

http://www.securityfocus.com/bid/101876

http://camel.apache.org/security-advisories.data/CVE-2017-12634.txt.asc