CVE-2026-48205
Apache · Camel DNS
An SSRF vulnerability in Apache Camel DNS allows unauthenticated attackers to perform internal network reconnaissance and potentially interact with attacker-controlled DNS servers.
Executive summary
An unauthenticated SSRF vulnerability in the Apache Camel DNS component allows attackers to conduct internal network reconnaissance and manipulate DNS queries, posing a critical risk to network integrity.
Vulnerability
The vulnerability stems from improper input validation where Camel header namespaces are not correctly filtered. This allows an unauthenticated attacker to inject malicious DNS parameters via HTTP request headers, forcing the application to perform unauthorized DNS resolutions.
Business impact
Successful exploitation allows an attacker to map internal network infrastructure and intercept or redirect traffic via DNS poisoning. Given the CVSS score of 9.1, this flaw represents a critical threat to data confidentiality and internal system security, potentially facilitating further lateral movement within the environment.
Remediation
Immediate Action: Upgrade to version 4.21.0, or the applicable LTS stream version (4.14.8 or 4.18.3). Post-upgrade, ensure routes are updated to use the corrected constant names (e.g., CamelDnsServer).
Proactive Monitoring: Review application logs for anomalous DNS requests or unexpected outbound connections originating from the Camel service.
Compensating Controls: For systems that cannot be patched immediately, implement strict ingress filtering to strip dns.* and term headers from all untrusted incoming requests.
Exploitation status
Public Exploit Available: false
Analyst recommendation
This vulnerability presents a significant risk for internal network exposure. Organizations should prioritize the application of the vendor-provided patches immediately to prevent unauthorized reconnaissance and potential DNS-based attacks.