Apache Software Foundation Apache James Server vulnerabilities

CVE-2024-45626 [MEDIUM] CWE-400 CVE-2024-45626: Apache James server JMAP HTML to text plain implementation in versions below 3.8.2 and 3.7.6 is subj Apache James server JMAP HTML to text plain implementation in versions below 3.8.2 and 3.7.6 is subject to unbounded memory consumption that can result in a denial of service. Users are recommended to upgrade to version 3.7.6 and 3.8.2, which fix this issue.

CVE-2024-37358 [MEDIUM] CWE-770 Apache James: denial of service through the use of IMAP literals Apache James: denial of service through the use of IMAP literals Similarly to CVE-2024-34055, Apache James is vulnerable to denial of service through the abuse of IMAP literals from both authenticated and unauthenticated users, which could be used to cause unbounded memory allocation and very long computations Version 3.7.6 and 3.8.2 restrict such illegitimate use of IMAP literals.

CVE-2024-34055 [MEDIUM] CWE-770 CVE-2024-34055: Cyrus IMAP before 3.8.3 and 3.10.x before 3.10.0-rc1 allows authenticated attackers to cause unbound Cyrus IMAP before 3.8.3 and 3.10.x before 3.10.0-rc1 allows authenticated attackers to cause unbounded memory allocation by sending many LITERALs in a single command.

CVE-2023-51518 [CRITICAL] CWE-502 CVE-2023-51518: Apache James prior to version 3.7.5 and 3.8.0 exposes a JMX endpoint on localhost subject to pre-aut Apache James prior to version 3.7.5 and 3.8.0 exposes a JMX endpoint on localhost subject to pre-authentication deserialisation of untrusted data. Given a deserialisation gadjet, this could be leveraged as part of an exploit chain that could result in privilege escalation. Note that by default JMX endpoint is only bound locally. We recommend user

CVE-2023-51747 [HIGH] CWE-20 CVE-2023-51747: Apache James prior to versions 3.8.1 and 3.7.5 is vulnerable to SMTP smuggling. A lenient behaviour Apache James prior to versions 3.8.1 and 3.7.5 is vulnerable to SMTP smuggling. A lenient behaviour in line delimiter handling might create a difference of interpretation between the sender and the receiver which can be exploited by an attacker to forge an SMTP envelop, allowing for instance to bypass SPF checks. The patch implies enforcement of CRLF

CVE-2023-26269 [HIGH] CWE-862 Apache James server: Privilege escalation through unauthenticated JMX Apache James server: Privilege escalation through unauthenticated JMX Apache James server version 3.7.3 and earlier provides a JMX management service without authentication by default. This allows privilege escalation by a malicious local user. Administrators are advised to disable JMX, or set up a JMX password. Note that version 3.7.4 onward will set up a JMX password automatically for Guice u

CVE-2022-45935 [MEDIUM] CWE-668 CVE-2022-45935: Usage of temporary files with insecure permissions by the Apache James server allows an attacker wit Usage of temporary files with insecure permissions by the Apache James server allows an attacker with local access to access private user data in transit. Vulnerable components includes the SMTP stack and IMAP APPEND command. This issue affects Apache James server version 3.7.2 and prior versions.