RHSA-2024:8064CriticalCVSS 8.8

Red Hat Security Advisory: Red Hat Build of Apache Camel 4.4.3 for Spring Boot security update.

Published
October 14, 2024
Last Modified
June 30, 2026

🔗 CVE IDs covered (6)

📋 Description

CVE-2023-52428 — nimbus-jose-jwt: large JWE p2c header value causes Denial of Service CVE-2024-7254 — protobuf: StackOverflow vulnerability in Protocol Buffers CVE-2024-38809 — org.springframework:spring-web: Spring Framework DoS via conditional HTTP request CVE-2024-38816 — spring-webmvc: Path Traversal Vulnerability in Spring Applications Using RouterFunctions and FileSystemResource CVE-2024-45294 — org.hl7.fhir.core: org.hl7.fhir.dstu3: org.hl7.fhir.r4: org.hl7.fhir.r4b: org.hl7.fhir.r5: org.hl7.fhir.utilities: XXE vulnerability in XSLT transforms in org.hl7.fhir.core CVE-2024-47561 — apache-avro: Schema parsing may trigger Remote Code Execution (RCE)

🔗 References (8)