CVE-2026-33454 - Apache Camel: Inbound Header Filter Missing in MailHeaderFilterStrategy Allows Remote Code Execution via MIME Header Injection (CVE-2025-30177 Variant)
CVE ID :CVE-2026-33454 Published : April 27, 2026, 9:42 a.m. | 18 minutes ago Description :The Camel-Mail component is vulnerable to Camel message header injection. The custom header filter strategy used by the component (MailHeaderFilterStrategy) only filters the 'out' direction via setOutFil
ORIGINAL SOURCE →via CVE Feed Latest
ADVERTISEMENT
⚡ STAY AHEAD
Events like this, convergence-verified across 689 sources, land in your inbox every Sunday. Free.
GET THE SUNDAY BRIEFING →RELATED · cyber
- [CYBER] Hamas organizing pro-Palestinian protests, raising funds in Netherlands, Dutch intelligence says
- [CYBER] UNC6692 Uses Email Bombing, Social Engineering to Deploy ‘Snow’ Malware
- [CYBER] 'An interesting evolution in tactics': Google security experts flag new cyber scam which abuses Microsoft Teams to steal your data
- [CYBER] In a first, a ransomware family is confirmed to be quantum-safe
- [CYBER] Easily Exploitable ‘Pack2TheRoot’ Linux Vulnerability Leads to Root Access
- [CYBER] CVE-2026-7112 - NousResearch hermes-agent API_SERVER_KEY api_server.py _check_auth improper authentication