Lucene search
China National Vulnerability DatabaseCNVD-2023-25927HistoryApr 06, 2023 - 12:00 a.m.
Apache James Elevation of Privilege Vulnerability
2023-04-0600:00:00
China National Vulnerability Database
www.cnvd.org.cn
9
apache james
elevation of privilege
vulnerability
smtp
pop3
nntp
java
apache foundation
jmx
management service
authentication
exploitation
escalate privileges
cnvd
0.0004 Low
EPSS
Percentile
5.1%
Apache James is an open source Smtp and Pop3 mail transfer agent and Nntp news server written entirely in Java from the Apache Foundation. an elevation of privilege vulnerability exists in Apache James 3.7.3 and prior versions, which stems from the default provisioning of the JMX management service without authentication, which could be exploited by an attacker to vulnerability can be exploited to escalate privileges.
| CPE | Name | Operator | Version |
|---|---|---|---|
| apache apache james | le | 3.7.3 |
Related
osv
osv
Apache James server's JMX management service vulnerable to privilege escalation by local user
2023-04-03 09:30:19
CVE-2023-26269
2023-04-03 08:15:07
Ant Media Server vulnerable to a local privilege escalation
2024-04-22 15:51:59
nvd
nvd
CVE-2023-26269
2023-04-03 08:15:07
CVE-2024-32656
2024-04-22 23:15:50
veracode
veracode
Privilege Escalation
2023-04-10 06:12:28
cve
cve
CVE-2023-26269
2023-04-03 08:15:07
CVE-2024-32656
2024-04-22 23:15:50
prion
prion
Authentication flaw
2023-04-03 08:15:00
cvelist
cvelist
github
github
Apache James server's JMX management service vulnerable to privilege escalation by local user
2023-04-03 09:30:19
Ant Media Server vulnerable to a local privilege escalation
2024-04-22 15:51:59