Deserialization of Untrusted Data
Apache Camel's camel-snakeyaml component is vulnerable to Java object de-serialization vulnerability. Deserializing untrusted data can lead to security flaws.
Advisories for Maven/Org.apache.camel/Camel-Snakeyaml package
2017