CVSS: 8.6EPSS: 0%CPEs: 2EXPL: 0CVE-2024-37358 – Apache James: denial of service through the use of IMAP literals
https://notcve.org/view.php?id=CVE-2024-37358
06 Feb 2025 — Similarly to CVE-2024-34055, Apache James is vulnerable to denial of service through the abuse of IMAP literals from both authenticated and unauthenticated users, which could be used to cause unbounded memory allocation and very long computations Version 3.7.6 and 3.8.2 restrict such illegitimate use of IMAP literals. • https://lists.apache.org/thread/1pxsh11v5s3fkvhnqvkmlqwt3fgpcrqc • CWE-20: Improper Input Validation •
CVSS: 6.8EPSS: 0%CPEs: 2EXPL: 0CVE-2024-45626 – Apache James: denial of service through JMAP HTML to text conversion
https://notcve.org/view.php?id=CVE-2024-45626
06 Feb 2025 — Apache James server JMAP HTML to text plain implementation in versions below 3.8.2 and 3.7.6 is subject to unbounded memory consumption that can result in a denial of service. Users are recommended to upgrade to version 3.7.6 and 3.8.2, which fix this issue. • https://lists.apache.org/thread/1fr9hvpsylomwwfr3rv82g84sxszn4kl • CWE-400: Uncontrolled Resource Consumption •
CVSS: 5.3EPSS: 2%CPEs: 1EXPL: 0CVE-2024-21742 – Apache James Mime4J: Mime4J DOM header injection
https://notcve.org/view.php?id=CVE-2024-21742
27 Feb 2024 — Improper input validation allows for header injection in MIME4J library when using MIME4J DOM for composing message. This can be exploited by an attacker to add unintended headers to MIME messages. La validación de entrada incorrecta permite la inyección de encabezado en la librería MIME4J cuando se usa MIME4J DOM para redactar mensajes. Un atacante puede aprovechar esto para agregar encabezados no deseados a los mensajes MIME. Improper input validation allows for header injection in MIME4J library when usi... • http://www.openwall.com/lists/oss-security/2024/02/27/5 • CWE-20: Improper Input Validation •
CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 0CVE-2023-51747 – SMTP smuggling in Apache James
https://notcve.org/view.php?id=CVE-2023-51747
27 Feb 2024 — Apache James prior to versions 3.8.1 and 3.7.5 is vulnerable to SMTP smuggling. A lenient behaviour in line delimiter handling might create a difference of interpretation between the sender and the receiver which can be exploited by an attacker to forge an SMTP envelop, allowing for instance to bypass SPF checks. The patch implies enforcement of CRLF as a line delimiter as part of the DATA transaction. We recommend James users to upgrade to non vulnerable versions. Apache James anterior a las versiones 3.8.... • http://www.openwall.com/lists/oss-security/2024/02/27/4 • CWE-20: Improper Input Validation CWE-290: Authentication Bypass by Spoofing CWE-444: Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling') •
CVSS: 9.8EPSS: 0%CPEs: 2EXPL: 1CVE-2023-51518 – Apache James server: Privilege escalation via JMX pre-authentication deserialisation
https://notcve.org/view.php?id=CVE-2023-51518
27 Feb 2024 — Apache James prior to version 3.7.5 and 3.8.0 exposes a JMX endpoint on localhost subject to pre-authentication deserialisation of untrusted data. Given a deserialisation gadjet, this could be leveraged as part of an exploit chain that could result in privilege escalation. Note that by default JMX endpoint is only bound locally. We recommend users to: - Upgrade to a non-vulnerable Apache James version - Run Apache James isolated from other processes (docker - dedicated virtual machine) - If possible turn of... • https://github.com/mbadanoiu/CVE-2023-51518 • CWE-502: Deserialization of Untrusted Data •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 1CVE-2023-26269 – Apache James server: Privilege escalation through unauthenticated JMX
https://notcve.org/view.php?id=CVE-2023-26269
03 Apr 2023 — Apache James server version 3.7.3 and earlier provides a JMX management service without authentication by default. This allows privilege escalation by a malicious local user. Administrators are advised to disable JMX, or set up a JMX password. Note that version 3.7.4 onward will set up a JMX password automatically for Guice users. • https://github.com/mbadanoiu/CVE-2023-26269 • CWE-862: Missing Authorization •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2022-45935 – Apache James server: Temporary File Information Disclosure
https://notcve.org/view.php?id=CVE-2022-45935
06 Jan 2023 — Usage of temporary files with insecure permissions by the Apache James server allows an attacker with local access to access private user data in transit. Vulnerable components includes the SMTP stack and IMAP APPEND command. This issue affects Apache James server version 3.7.2 and prior versions. • https://lists.apache.org/thread/j61fo8xc1rxtofrn8vc33whx35s9cj1d • CWE-668: Exposure of Resource to Wrong Sphere •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2022-45787 – Apache James MIME4J: Temporary File Information Disclosure in MIME4J TempFileStorageProvider
https://notcve.org/view.php?id=CVE-2022-45787
06 Jan 2023 — Unproper laxist permissions on the temporary files used by MIME4J TempFileStorageProvider may lead to information disclosure to other local users. This issue affects Apache James MIME4J version 0.8.8 and prior versions. We recommend users to upgrade to MIME4j version 0.8.9 or later. A flaw was found in Apache James's Mime4j TempFileStorageProvider class, where it may set improper permissions when utilizing temporary files. This flaw allows a locally authorized attacker to access information outside their in... • https://lists.apache.org/thread/26s8p9stl1z261c4qw15bsq03tt7t0rj • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor CWE-312: Cleartext Storage of Sensitive Information •
CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 0CVE-2022-28220 – STARTTLS command injection in Apache JAMES
https://notcve.org/view.php?id=CVE-2022-28220
08 Sep 2022 — Apache James prior to release 3.6.3 and 3.7.1 is vulnerable to a buffering attack relying on the use of the STARTTLS command. Fix of CVE-2021-38542, which solved similar problem fron Apache James 3.6.1, is subject to a parser differential and do not take into account concurrent requests. Apache James versiones anteriores a 3.6.3 y 3.7.1, es vulnerable a un ataque de almacenamiento en búfer que depende del uso del comando STARTTLS. La corrección de CVE-2021-38542, que resolvió un problema similar de Apa... • http://www.openwall.com/lists/oss-security/2022/09/20/1 • CWE-77: Improper Neutralization of Special Elements used in a Command ('Command Injection') •
CVSS: 4.3EPSS: 2%CPEs: 1EXPL: 0CVE-2022-22931 – Path traversal in Apache James 3.6.1
https://notcve.org/view.php?id=CVE-2022-22931
07 Feb 2022 — Fix of CVE-2021-40525 do not prepend delimiters upon valid directory validations. Affected implementations include: - maildir mailbox store - Sieve file repository This enables a user to access other users data stores (limited to user names being prefixed by the value of the username being used). La corrección de CVE-2021-40525 no antepone delimitadores a las comprobaciones de directorios. Las implementaciones afectadas incluyen: - Almacén de buzones maildir - Repositorio de archivos Sieve Esto permite a un... • https://lists.apache.org/thread/bp8yql4wws56jlh0vxoowj7foothsmpr • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •