CVE-2018-8041

MEDIUM

Apache Camel's Mail <2.22.0 - Path Traversal

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2018-8041. PoCs published by shoucheng3.

AI-analyzed exploit summary The repository contains build and test scripts for Apache Camel but lacks actual exploit code for CVE-2018-8041. No offensive techniques or vulnerability-specific payloads are present.

Description

Apache Camel's Mail 2.20.0 through 2.20.3, 2.21.0 through 2.21.1 and 2.22.0 is vulnerable to path traversal.

Exploits (1)

nomisec STUB
by shoucheng3 · poc
https://github.com/shoucheng3/apache__camel_CVE-2018-8041_2-20-3

The repository contains build and test scripts for Apache Camel but lacks actual exploit code for CVE-2018-8041. No offensive techniques or vulnerability-specific payloads are present.

Classification
Stub 90%
Attack Type
Other
Complexity
Trivial
Reliability
Theoretical
Target: Apache Camel
No auth needed
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (6)

Core 6
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/105352
Issue Tracking, Vendor Advisory x_refsource_confirm
https://issues.apache.org/jira/browse/CAMEL-12630
Third Party Advisory vendor-advisory x_refsource_redhat
https://access.redhat.com/errata/RHSA-2018:3768

Scores

CVSS v3 5.3
EPSS 0.0247
EPSS Percentile 85.7%
Attack Vector NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Details

CWE
CWE-22
Status published
Products (3)
apache/camel 2.22.0
apache/camel 2.20.0 - 2.20.3
org.apache.camel/camel-mail 2.20.0 - 2.20.4Maven
Published Sep 17, 2018
Tracked Since Feb 18, 2026