Improper Input Validation in Apache Camel Affects Multiple Versions
CVE-2026-46587

Currently unrated

Key Information:

Vendor

Apache

Vendor
CVE Published:
6 July 2026

What is CVE-2026-46587?

An improper input validation vulnerability in Apache Camel has been identified, impacting versions up to 4.14.7, from 4.15.0 to 4.18.2, and from 4.19.0 to 4.20.0. This flaw can lead to potential exploitation if untrusted input is processed. It is strongly advised for users to upgrade to Apache Camel versions 4.14.8, 4.18.3, or 4.21.0 to resolve the issue and bolster security.

Affected Version(s)

Apache Camel 0 <= 4.14.7

Apache Camel 4.15.0 <= 4.18.2

Apache Camel 4.19.0 <= 4.20.0

References

Timeline

  • Vulnerability published

  • Vulnerability Reserved

Credit

Yu Bao - yubao@paypal.com, who works for paypal.com.
.