CVE-2017-5643: Apache Camel's Validation Component is vulnerable against SSRF via remote DTDs and XXE

March 16, 2017 (updated May 24, 2019)

This package is vulnerable against SSRF via remote DTDs and XXE.

References

camel.apache.org/security-advisories.data/CVE-2017-5643.txt
issues.apache.org/jira/browse/CAMEL-10894
www.cvedetails.com/cve/CVE-2017-5643/

Code Behaviors & Features

Detect and mitigate CVE-2017-5643 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →