Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistApacheCVELIST:CVE-2022-45935
HistoryJan 06, 2023 - 9:33 a.m.

CVE-2022-45935 Apache James server: Temporary File Information Disclosure

2023-01-0609:33:30
CWE-668
apache
www.cve.org
apache
james server
temporary files
vulnerability
local access
data disclosure

0.0004 Low

EPSS

Percentile

5.1%

JSON

Usage of temporary files with insecure permissions by the Apache James server allows an attacker with local access to access private user data in transit.

Vulnerable components includes the SMTP stack and IMAP APPEND command.

This issue affects Apache James server version 3.7.2 and prior versions.

CNA Affected

[
  {
    "defaultStatus": "unaffected",
    "product": "Apache James server",
    "vendor": "Apache Software Foundation",
    "versions": [
      {
        "lessThanOrEqual": "3.7.2",
        "status": "affected",
        "version": "0",
        "versionType": "semver"
      }
    ]
  }
]

Related

cve 1
prion 1
cnvd 1
osv 2
nvd 1
redhatcve 1
github 1
veracode 1
cve
cve
CVE-2022-45935
2023-01-06 10:15:10
prion
prion
Command injection
2023-01-06 10:15:00
cnvd
cnvd
Apache James Information Disclosure Vulnerability
2023-01-11 00:00:00
osv
osv
Apache James server allows an attacker with local access to access private user data in transit
2023-01-06 12:31:34
CVE-2022-45935
2023-01-06 10:15:10
nvd
nvd
CVE-2022-45935
2023-01-06 10:15:10
redhatcve
redhatcve
CVE-2022-45935
2023-01-06 22:01:42
github
github
Apache James server allows an attacker with local access to access private user data in transit
2023-01-06 12:31:34
veracode
veracode
Information Disclosure
2023-01-07 16:12:00

0.0004 Low

EPSS

Percentile

5.1%

JSON
Related for CVELIST:CVE-2022-45935
cve1prion1cnvd1osv2nvd1redhatcve1github1veracode1