{"vulnerability": "cve-2026-46454", "sightings": [{"uuid": "520a5c16-101f-4cd9-96d5-c2b06d0ecfda", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-46454", "type": "seen", "source": "https://bsky.app/profile/infosec.skyfleet.blue/post/3mpwd6qnra62b", "content": "CVE-2026-46454: Apache Camel: Camel-Cometd: Inbound Bayeux message headers are mapped into the Exchange without a HeaderFilterStrategy, allowing unauthenticated clients to inject Camel control headers", "creation_timestamp": "2026-07-05T19:37:23.534111Z"}, {"uuid": "539db8f8-2dd3-4d46-9b47-b383a3469ee0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-46454", "type": "seen", "source": "https://bsky.app/profile/stackflag.bsky.social/post/3mpypo5e3fk2s", "content": "CVE-2026-46454 - apache camel\nApache Camel's CometD component doesn't check incoming messages for security. This allows unauthenticated clients to inject custom headers that can affect how the\u2026\n\nToo many irrelevant or confusing CVEs? Use stackflag.com\n\n#apachecamel #apachefoundation #CVE #infosec", "creation_timestamp": "2026-07-06T18:26:04.940886Z"}, {"uuid": "ec6ebacd-bd93-4d61-9c45-0498077ad61f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-46454", "type": "seen", "source": "https://bsky.app/profile/kriptabiz.bsky.social/post/3mq6pgnvwbd2f", "content": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c CVE-2026-46454 \u0432 \u043a\u043e\u043c\u043f\u043e\u043d\u0435\u043d\u0442\u0435 Apache Camel Cometd: \u0443\u0433\u0440\u043e\u0437\u0430 \u0438 \u0441\u043f\u043e\u0441\u043e\u0431\u044b \u0437\u0430\u0449\u0438\u0442\u044b\n\n\n\nhttps://kripta.biz/posts/968BE81B-7086-4A8D-BDCD-1B1A122E9771", "creation_timestamp": "2026-07-09T03:37:51.867022Z"}, {"uuid": "8bd9beac-a5ff-4277-901c-cebdba7fba56", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-46454", "type": "seen", "source": "https://bsky.app/profile/cyberhub.blog/post/3mq6ugb4t7n2m", "content": "\ud83d\udccc CVE-2026-46454 - Improper Input Validation vulnerability in Apache Camel Cometd Component.\n\nThe camel-cometd component maps inbound Bayeux (CometD) message headers int... https://www.cyberhub.blog/cves/CVE-2026-46454", "creation_timestamp": "2026-07-09T05:07:07.562711Z"}]}