Lucene search
Veracode Vulnerability DatabaseVERACODE:25845HistoryJul 09, 2020 - 5:02 a.m.
Server-Side Template Injection
2020-07-0905:02:14
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
17
EPSS
0.005
Percentile
77.2%
camel-robotframework is vulnerable to server-side template injection. An attacker is able to inject and execute arbitrary code via server-side templates.
References
github.com/apache/camel-website/commit/5395f5ffeb46219687ba3a76d92aaee08dc86f2f
lists.apache.org/thread.html/d0e00f2e147a9e9b13a6829133092f349b2882bf6860397368a52600@%3Cannounce.tomcat.apache.org%3E
lists.apache.org/thread.html/d0e00f2e147a9e9b13a6829133092f349b2882bf6860397368a52600@%3Cannounce.tomcat.apache.org%3E
www.oracle.com/security-alerts/cpuApr2021.html
www.oracle.com/security-alerts/cpujan2021.html
www.oracle.com/security-alerts/cpuoct2021.html
Related
github
github
Server side template injection in Apache Camel
2020-07-29 18:08:48
nvd
nvd
CVE-2020-11994
2020-07-08 16:15:11
cve
cve
CVE-2020-11994
2020-07-08 16:15:11
osv
osv
Server side template injection in Apache Camel
2020-07-29 18:08:48
CVE-2020-11994
2020-07-08 16:15:11
prion
prion
Design/Logic Flaw
2020-07-08 16:15:00
redhatcve
redhatcve
CVE-2020-11994
2020-07-10 13:51:49
cvelist
cvelist
CVE-2020-11994
2020-07-08 15:13:02
redhat
redhat
nessus
nessus
Oracle Enterprise Manager Cloud Control (Apr 2021 CPU)
2021-04-21 00:00:00
oracle
oracle
Oracle Critical Patch Update Advisory - January 2021
2021-01-19 00:00:00
Oracle Critical Patch Update Advisory - April 2021
2021-04-20 00:00:00
Oracle Critical Patch Update Advisory - October 2021
2021-10-19 00:00:00