Details
-
Task
-
Status: Resolved
-
Major
-
Resolution: Fixed
-
2.23.0
-
None
-
Unknown
Description
Hi! Pivotal released a security advisory for spring-ws (1) which allows for XXE attacks. The current camel-master repository lists spring-ws with versions 2.4.2 and 3.0.4 which are both vulnerable.
The vulnerability is rated critical. Is any timely update planned?