Apache James is an open source Smtp and Pop3 mail transfer agent and Nntp news server written entirely in Java by the Apache Foundation. Apache James in version 3.6.1 contains a path traversal vulnerability that stems from a failure of a networked system or product to properly filter special elements in a resource or file path. An attacker could use this vulnerability to perform a path traversal attack to read and write to any file.
CPE | Name | Operator | Version |
---|---|---|---|
apache james | eq | 3.6.1 |