seclists.org · Apr 26, 2026 06:19 PM UTC

oss-sec: CVE-2026-27172: Apache Camel: Unsafe Java deserialization in camel-consul ConsulRegistry allows arbitrary code execution via malicious values read from the Consul KV store

Summary

Severity: important Affected versions: - Apache Camel (org.apache.camel:camel-consul) 3.0.0 before 4.14.6 - Apache Camel (org.apache.camel:camel-consul) 4.15.0 ...

Original reporting

AFBytes is a read-only aggregator. Use the original source for full context and complete reporting.

Open original source

oss-sec: CVE-2026-27172: Apache Camel: Unsafe Java deserialization in camel-consul ConsulRegistry allows arbitrary code execution via malicious values read from the Consul KV store

Summary

Original reporting

Related coverage

This new Skyrim mod is unashamedly vibe-coded, but it lets you swing NPCs into each other with ragdoll physics, so we all win

Defence shut out as overseas students fill UK courses

Tojson in MQTT Button (configuration.yaml)

LLM-assisted coding is not deterministic. It does it matter?

Struggling to get the OS installed properly onto DreamFyre

Home Assistant's ePaper ecosystem finally has an open standard worth building around