CVE-2023-51518Deserialization of Untrusted Data in Software Foundation Apache James Server

CWE-502Deserialization of Untrusted Data4 documents4 sources
Severity
9.8CRITICALNVD
EPSS
0.4%
top 36.82%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Apache Software Foundation Apache James ServerApache James
Timeline
PublishedFeb 27

Description

Apache James prior to version 3.7.5 and 3.8.0 exposes a JMX endpoint on localhost subject to pre-authentication deserialisation of untrusted data. Given a deserialisation gadjet, this could be leveraged as part of an exploit chain that could result in privilege escalation. Note that by default JMX endpoint is only bound locally. We recommend users to: - Upgrade to a non-vulnerable Apache James version - Run Apache James isolated from other processes (docker - dedicated virtual machine) - If po

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 3.9 | Impact: 5.9

Affected Packages2 packages

NVDapache/james3.7.5, 3.8.0+1

🔴Vulnerability Details

3
CVEList
Apache James server: Privilege escalation via JMX pre-authentication deserialisation2024-02-27
GHSA
Apache James server: Privilege escalation via JMX pre-authentication deserialization2024-02-27
OSV
Apache James server: Privilege escalation via JMX pre-authentication deserialization2024-02-27
CVE-2023-51518 — Deserialization of Untrusted Data | cvebase