json-path v2.8.0 was discovered to contain a stack overflow via the Criteria.parse() method. https://github.com/json-path/JsonPath/issues/973
Downgrading this flaw to Moderate impact, especially to match NVD CVSS and also our impact rating which, as explained in the statement section, there is a very specific scenario for this flaw to be explored.
This issue has been addressed in the following products: RHBOAC camel-quarkus 3 (camel-4.0/quarkus-3.2) Via RHSA-2024:0789 https://access.redhat.com/errata/RHSA-2024:0789
This issue has been addressed in the following products: RHINT Camel-Springboot 3.20.5 Via RHSA-2024:0792 https://access.redhat.com/errata/RHSA-2024:0792
This issue has been addressed in the following products: Red Hat build of Apache Camel 4.4.0 for Spring Boot Via RHSA-2024:2707 https://access.redhat.com/errata/RHSA-2024:2707
This issue has been addressed in the following products: Red Hat AMQ Streams 2.7.0 Via RHSA-2024:3527 https://access.redhat.com/errata/RHSA-2024:3527