View all vulnerabilities

CVE-2024-21742

Apache James MIME4J improper input validation vulnerability

Improper input validation allows for header injection in MIME4J library when using MIME4J DOM for composing message.This can be exploited by an attacker to add unintended headers to MIME messages.

Patch Available

Fix available through Seal Security. No upgrade required, protect your application instantly.

Fix without upgrading
Vulnerability Details
Score
5.3
Score Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
Affected Versions
org.apache.james:apache-mime4j-core < 0.8.10
Severity
Medium
Ecosystem
Publish Date
February 27, 2024
Modified Date
February 14, 2025