1. Home
  2. Packages
  3. maven
  4. org.apache.james
  5. james-server

pkg:maven/org.apache.james/james-server

Type maven
Namespace org.apache.james
Name james-server

Known advisories, vulnerabilities and fixes for org.apache.james/james-server package.

Repository
https://mvnrepository.com/artifact/org.apache.james/james-server
Critical 1
High 3
Moderate 7
Type Version Distribution # CVEs # Advisory ID Title Severity Published
Affected < 3.6.1 CVE-2021-38542
maven MAVEN:GHSA-84WG-RGP8-2HG4 Command Injection in Apache James moderate 2022-01-08T00:40:33
(2 years ago)
Fixed = 3.6.1 CVE-2021-38542
maven MAVEN:GHSA-84WG-RGP8-2HG4 Command Injection in Apache James moderate 2022-01-08T00:40:33
(2 years ago)
Affected < 2.2.0 CVE-2004-2650
maven MAVEN:GHSA-92J7-34X9-F3JW Apache James Denial of Service moderate 2022-04-29T03:01:51
(2 years ago)
Fixed = 2.2.0 CVE-2004-2650
maven MAVEN:GHSA-92J7-34X9-F3JW Apache James Denial of Service moderate 2022-04-29T03:01:51
(2 years ago)
Affected < 3.6.1 CVE-2021-40525
maven MAVEN:GHSA-C38M-7H53-G9V4 Path traversal in Apache James critical 2022-01-21T23:36:47
(2 years ago)
Fixed = 3.6.1 CVE-2021-40525
maven MAVEN:GHSA-C38M-7H53-G9V4 Path traversal in Apache James critical 2022-01-21T23:36:47
(2 years ago)
Affected < 2.3.2.1 CVE-2015-7611
maven MAVEN:GHSA-CGVF-22VV-83H5 Apache James Server OS Command Injection high 2022-05-14T02:47:30
(2 years ago)
Fixed = 2.3.2.1 CVE-2015-7611
maven MAVEN:GHSA-CGVF-22VV-83H5 Apache James Server OS Command Injection high 2022-05-14T02:47:30
(2 years ago)
Affected < 3.6.1 CVE-2021-40111
maven MAVEN:GHSA-FQGW-6QJ5-8HMP Infinite Loop in Apache James moderate 2022-01-08T00:40:37
(2 years ago)
Fixed = 3.6.1 CVE-2021-40111
maven MAVEN:GHSA-FQGW-6QJ5-8HMP Infinite Loop in Apache James moderate 2022-01-08T00:40:37
(2 years ago)
Affected = 3.8.0 < 3.7.5 CVE-2023-51747
maven MAVEN:GHSA-P5Q9-86W4-2XR5 SMTP smuggling in Apache James moderate 2024-02-27T15:30:31
(6 months ago)
Fixed = 3.8.1 = 3.7.5 CVE-2023-51747
maven MAVEN:GHSA-P5Q9-86W4-2XR5 SMTP smuggling in Apache James moderate 2024-02-27T15:30:31
(6 months ago)
Affected >= 3.8.0, < 3.8.1 <= 3.7.4 CVE-2023-51518
maven MAVEN:GHSA-PX7W-C9GW-7GJ3 Apache James server: Privilege escalation via JMX pre-authentication deserialization moderate 2024-02-27T09:31:16
(6 months ago)
Fixed = 3.8.1 = 3.7.5 CVE-2023-51518
maven MAVEN:GHSA-PX7W-C9GW-7GJ3 Apache James server: Privilege escalation via JMX pre-authentication deserialization moderate 2024-02-27T09:31:16
(6 months ago)
Affected < 3.6.1 CVE-2021-40110
maven MAVEN:GHSA-R58X-WJG8-63M9 Denial of Service in Apache James high 2022-01-08T00:40:30
(2 years ago)
Fixed = 3.6.1 CVE-2021-40110
maven MAVEN:GHSA-R58X-WJG8-63M9 Denial of Service in Apache James high 2022-01-08T00:40:30
(2 years ago)
Affected <= 3.7.2 CVE-2022-45935
maven MAVEN:GHSA-V6VP-62VC-84QW Apache James server allows an attacker with local access to access private user data in transit moderate 2023-01-06T12:31:34
(20 months ago)
Affected < 3.6.2 CVE-2022-22931
maven MAVEN:GHSA-V84G-CF5J-XJQX Path Traversal in Apache James Server moderate 2022-02-08T00:00:34
(2 years ago)
Fixed = 3.6.2 CVE-2022-22931
maven MAVEN:GHSA-V84G-CF5J-XJQX Path Traversal in Apache James Server moderate 2022-02-08T00:00:34
(2 years ago)
Affected = 3.7.0 < 3.6.3 CVE-2022-28220
maven MAVEN:GHSA-W45J-F5G5-W94X Apache James vulnerable to buffering attack high 2022-09-09T00:00:57
(2 years ago)
Fixed = 3.7.1 = 3.6.3 CVE-2022-28220
maven MAVEN:GHSA-W45J-F5G5-W94X Apache James vulnerable to buffering attack high 2022-09-09T00:00:57
(2 years ago)