Vulnerability	Vulnerable Version
M Improper Handling of Case Sensitivity Affected versions of this package are vulnerable to Improper Handling of Case Sensitivity due to a flaw in the default filtering mechanism `HeaderFilterStrategy` that only blocks headers starting with specific prefixes. An attacker can execute arbitrary code and write files by injecting specially crafted case-variant headers when they have producer access to the broker consumed by a route. Note: This issue is due to incomplete fix for CVE-2025-27636. How to fix Improper Handling of Case Sensitivity? Upgrade `org.apache.camel:camel-coap` to version 4.14.6, 4.18.2, 4.20.0 or higher.	[3.0.0-M1,4.14.6)[4.15.0,4.18.2)[4.19.0,4.20.0)

Improper Handling of Case Sensitivity

Affected versions of this package are vulnerable to Improper Handling of Case Sensitivity due to a flaw in the default filtering mechanism HeaderFilterStrategy that only blocks headers starting with specific prefixes. An attacker can execute arbitrary code and write files by injecting specially crafted case-variant headers when they have producer access to the broker consumed by a route.

Note:

This issue is due to incomplete fix for CVE-2025-27636.

How to fix Improper Handling of Case Sensitivity?

Upgrade org.apache.camel:camel-coap to version 4.14.6, 4.18.2, 4.20.0 or higher.

[3.0.0-M1,4.14.6)[4.15.0,4.18.2)[4.19.0,4.20.0)

Go back to all versions of this package