CVE-2026-6857

HIGH

Camel-infinispan: camel-infinispan: remote code execution via unsafe deserialization

Title source: cna

Exploitation Summary

EIP tracks 1 public exploit for CVE-2026-6857. PoCs published by HORKimhab.

AI-analyzed exploit summary This repository contains a functional exploit for CVE-2026-6857, targeting an unsafe deserialization vulnerability in Camel Infinispan. The exploit writes a crafted payload to an Infinispan cache, which can be triggered by sending a message with a specific correlation ID.

Description

A flaw was found in camel-infinispan. This vulnerability involves unsafe deserialization in the ProtoStream remote aggregation repository. A remote attacker with low privileges could exploit this by sending specially crafted data, leading to arbitrary code execution. This allows the attacker to gain full control over the affected system, impacting its confidentiality, integrity, and availability.

Exploits (1)

nomisec WORKING POC

by HORKimhab · poc

https://github.com/HORKimhab/CVE-2026-6857

View Code ZIP pw:eip

This repository contains a functional exploit for CVE-2026-6857, targeting an unsafe deserialization vulnerability in Camel Infinispan. The exploit writes a crafted payload to an Infinispan cache, which can be triggered by sending a message with a specific correlation ID.

Classification

Working Poc 90%

Attack Type

Deserialization

Complexity

Moderate

Reliability

Reliable

Target: Camel Infinispan

No auth needed

Prerequisites: Access to the Hot Rod port (default 11222) · Knowledge of the target cache name · hotrod-cli tool installed

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1059 - Command and Scripting Interpreter

devstral-2 · analyzed May 16, 2026 Full analysis →

References (4)

Core 4

Core References

Vendor Advisory vendor-advisory x_refsource_redhat

RHSA-2026:22453

https://access.redhat.com/errata/RHSA-2026:22453

Vdb Entry, X_Refsource_Redhat vdb-entry x_refsource_redhat

https://access.redhat.com/security/cve/CVE-2026-6857

Vendor Advisory vendor-advisory x_refsource_redhat

RHSA-2026:17668

https://access.redhat.com/errata/RHSA-2026:17668

Issue Tracking, X_Refsource_Redhat issue-tracking x_refsource_redhat

RHBZ#2460003

https://bugzilla.redhat.com/show_bug.cgi?id=2460003

Scores

CVSS v3 7.5

EPSS 0.0067

EPSS Percentile 46.8%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact total

Details

CWE

CWE-502

Status published

Products (8)

org.apache.camel/camel-infinispan 0 - 4.20.0Maven

Red Hat/Red Hat build of Apache Camel 4 for Quarkus 3

Red Hat/Red Hat Build of Apache Camel 4.18 for Quarkus 3.33

Red Hat/Red Hat build of Apache Camel 4.18.1 for Spring Boot 3.5.14

Red Hat/Red Hat build of Apache Camel for Spring Boot 4

Red Hat/Red Hat Fuse 7

Red Hat/Red Hat JBoss Enterprise Application Platform 8

Red Hat/Red Hat JBoss Enterprise Application Platform Expansion Pack

Published Apr 22, 2026

Tracked Since Apr 22, 2026