pkg:maven/org.apache.james/james-server
Type
maven
Namespace
org.apache.james
Name
james-server
Known advisories, vulnerabilities and fixes for org.apache.james/james-server package.
Critical
1
High
3
Moderate
7
Type | Version | Distribution | # CVEs | # Advisory ID | Title | Severity | Published |
---|---|---|---|---|---|---|---|
Affected | < 3.6.1 |
CVE-2021-38542
|
MAVEN:GHSA-84WG-RGP8-2HG4 | Command Injection in Apache James | moderate |
2022-01-08T00:40:33
(2 years ago) |
|
Fixed | = 3.6.1 |
CVE-2021-38542
|
MAVEN:GHSA-84WG-RGP8-2HG4 | Command Injection in Apache James | moderate |
2022-01-08T00:40:33
(2 years ago) |
|
Affected | < 2.2.0 |
CVE-2004-2650
|
MAVEN:GHSA-92J7-34X9-F3JW | Apache James Denial of Service | moderate |
2022-04-29T03:01:51
(2 years ago) |
|
Fixed | = 2.2.0 |
CVE-2004-2650
|
MAVEN:GHSA-92J7-34X9-F3JW | Apache James Denial of Service | moderate |
2022-04-29T03:01:51
(2 years ago) |
|
Affected | < 3.6.1 |
CVE-2021-40525
|
MAVEN:GHSA-C38M-7H53-G9V4 | Path traversal in Apache James | critical |
2022-01-21T23:36:47
(2 years ago) |
|
Fixed | = 3.6.1 |
CVE-2021-40525
|
MAVEN:GHSA-C38M-7H53-G9V4 | Path traversal in Apache James | critical |
2022-01-21T23:36:47
(2 years ago) |
|
Affected | < 2.3.2.1 |
CVE-2015-7611
|
MAVEN:GHSA-CGVF-22VV-83H5 | Apache James Server OS Command Injection | high |
2022-05-14T02:47:30
(2 years ago) |
|
Fixed | = 2.3.2.1 |
CVE-2015-7611
|
MAVEN:GHSA-CGVF-22VV-83H5 | Apache James Server OS Command Injection | high |
2022-05-14T02:47:30
(2 years ago) |
|
Affected | < 3.6.1 |
CVE-2021-40111
|
MAVEN:GHSA-FQGW-6QJ5-8HMP | Infinite Loop in Apache James | moderate |
2022-01-08T00:40:37
(2 years ago) |
|
Fixed | = 3.6.1 |
CVE-2021-40111
|
MAVEN:GHSA-FQGW-6QJ5-8HMP | Infinite Loop in Apache James | moderate |
2022-01-08T00:40:37
(2 years ago) |
|
Affected | = 3.8.0 < 3.7.5 |
CVE-2023-51747
|
MAVEN:GHSA-P5Q9-86W4-2XR5 | SMTP smuggling in Apache James | moderate |
2024-02-27T15:30:31
(6 months ago) |
|
Fixed | = 3.8.1 = 3.7.5 |
CVE-2023-51747
|
MAVEN:GHSA-P5Q9-86W4-2XR5 | SMTP smuggling in Apache James | moderate |
2024-02-27T15:30:31
(6 months ago) |
|
Affected | >= 3.8.0, < 3.8.1 <= 3.7.4 |
CVE-2023-51518
|
MAVEN:GHSA-PX7W-C9GW-7GJ3 | Apache James server: Privilege escalation via JMX pre-authentication deserialization | moderate |
2024-02-27T09:31:16
(6 months ago) |
|
Fixed | = 3.8.1 = 3.7.5 |
CVE-2023-51518
|
MAVEN:GHSA-PX7W-C9GW-7GJ3 | Apache James server: Privilege escalation via JMX pre-authentication deserialization | moderate |
2024-02-27T09:31:16
(6 months ago) |
|
Affected | < 3.6.1 |
CVE-2021-40110
|
MAVEN:GHSA-R58X-WJG8-63M9 | Denial of Service in Apache James | high |
2022-01-08T00:40:30
(2 years ago) |
|
Fixed | = 3.6.1 |
CVE-2021-40110
|
MAVEN:GHSA-R58X-WJG8-63M9 | Denial of Service in Apache James | high |
2022-01-08T00:40:30
(2 years ago) |
|
Affected | <= 3.7.2 |
CVE-2022-45935
|
MAVEN:GHSA-V6VP-62VC-84QW | Apache James server allows an attacker with local access to access private user data in transit | moderate |
2023-01-06T12:31:34
(20 months ago) |
|
Affected | < 3.6.2 |
CVE-2022-22931
|
MAVEN:GHSA-V84G-CF5J-XJQX | Path Traversal in Apache James Server | moderate |
2022-02-08T00:00:34
(2 years ago) |
|
Fixed | = 3.6.2 |
CVE-2022-22931
|
MAVEN:GHSA-V84G-CF5J-XJQX | Path Traversal in Apache James Server | moderate |
2022-02-08T00:00:34
(2 years ago) |
|
Affected | = 3.7.0 < 3.6.3 |
CVE-2022-28220
|
MAVEN:GHSA-W45J-F5G5-W94X | Apache James vulnerable to buffering attack | high |
2022-09-09T00:00:57
(2 years ago) |
|
Fixed | = 3.7.1 = 3.6.3 |
CVE-2022-28220
|
MAVEN:GHSA-W45J-F5G5-W94X | Apache James vulnerable to buffering attack | high |
2022-09-09T00:00:57
(2 years ago) |