A vulnerability labeled as critical has been found in Apache Camel up to 4.14.5/4.18.0 . This affects an unknown part of the component Inbound Header Filter . Such manipulation leads to injection. This vulnerability is listed as CVE-2026-33454 . The attack may be performed from remote. There is no available exploit. The affected component should be upgraded.