Deserialization in Apache Software Foundation Camel

CVE-2026-43867

Deserialization of Untrusted Data vulnerability in Apache Camel PQC Component. The camel-pqc component persists post-quantum key metadata (KeyMetadata) through pluggable KeyLifecycleManager implementations. AwsSecretsManagerKeyLifecycleMa…

Vulnerability class: Insecure Deserialization

Affected products

Weakness classification (CWE)

References