2
1
2
0
Vulnerability Timeline
2 vulnerabilities discovered over time for Camel
Severity Distribution
| Description | Vendor / Product | Exploit Status | |||
|---|---|---|---|---|---|
| CVE-2026-25747 | 8.8 | This vulnerability allows an attacker to execute arbitrary code on a server running Apache Camel if they can write to the LevelDB database files used by the application. This means that if an attacker has access to modify these files, they can inject malicious code that runs when the application processes the data, potentially compromising the entire system. | apachecamel | Exploit Available | about 1 month agoFeb 23, 2026 |
| CVE-2026-23552 | 9.1 | This vulnerability allows an attacker to use a valid token from one Keycloak realm to gain unauthorized access to resources in a different realm, effectively bypassing security measures meant to keep these realms separate. It affects specific versions of Apache Camel and requires that the application is using the Keycloak component without proper issuer validation. | apachecamel | Exploit Available | about 1 month agoFeb 23, 2026 |
About Apache Camel Security
This page provides comprehensive security vulnerability tracking for Apache Camel. Our database includes all CVEs affecting this product, updated in real-time from official sources.
Each vulnerability listing includes detailed CVSS severity analysis, exploit availability status, AI-generated explanations, and direct links to official security patches and vendor advisories.
Security Recommendations
- • Always keep Camel updated to the latest version
- • Subscribe to security advisories from Apache
- • Monitor this page for new vulnerabilities affecting your version
- • Prioritize patching critical and high severity issues immediately