A minor version update is now available for Red Hat Camel K that includes CVE fixes in the base images. Details are linked in the References section.
Security Fix(es):
jetty: requests to the ConcatServlet and WelcomeFilter are able to access protected resources within the WEB-INF directory (CVE-2021-28169)
tika-core: incomplete fix for CVE-2022-30126 (CVE-2022-30973)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.