All 4 CVE vulnerabilities found in Red Hat build of Apache Camel for Spring Boot 4, with AI-generated Chinese analysis, references, and POCs.
Vendor: Red Hat
| CVE ID | Title | CVSS | Severity | Paused |
|---|---|---|---|---|
| CVE-2026-28369 | Undertow: undertow: request smuggling via malformed http request headers CWE-444 | 8.7 | High | 2026-03-27 |
| CVE-2026-28367 | Undertow: undertow: request smuggling via `\r\r\r` as a header block terminator CWE-444 | 8.7 | High | 2026-03-27 |
| CVE-2026-28368 | Undertow: undertow: request smuggling via inconsistent header parsing CWE-444 | 8.7 | High | 2026-03-27 |
| CVE-2026-3260 | Undertow: undertow: denial of service due to premature multipart/form-data parsing in get requests CWE-770 | 5.9 | Medium | 2026-03-24 |
All 4 known CVE vulnerabilities affecting Red Hat build of Apache Camel for Spring Boot 4 with full Chinese analysis, references, and POCs where available.