Lucene search
ApacheCVELIST:CVE-2024-21742HistoryFeb 27, 2024 - 4:21 p.m.
CVE-2024-21742 Apache James Mime4J: Mime4J DOM header injection
2024-02-2716:21:16
CWE-20
apache
www.cve.org
2
apache james mime4j
input validation
header injection
mime messages
Improper input validation allows for header injection in MIME4J library when using MIME4J DOM for composing message.
This can be exploited by an attacker to add unintended headers to MIME messages.
CNA Affected
[
{
"collectionURL": "https://repo.maven.apache.org/maven2",
"defaultStatus": "unaffected",
"packageName": "org.apache.james:apache-mime4j-dom",
"product": "Apache James Mime4J",
"vendor": "Apache Software Foundation",
"versions": [
{
"lessThanOrEqual": "0.8.9",
"status": "affected",
"version": "0",
"versionType": "maven"
}
]
}
]Related
osv
osv
Apache James MIME4J improper input validation vulnerability
2024-02-27 18:31:02
github
github
Apache James MIME4J improper input validation vulnerability
2024-02-27 18:31:02
wolfi
wolfi
CVE-2024-21742 vulnerabilities
2024-06-28 15:21:31
veracode
veracode
Header Injection
2024-02-28 08:31:33
debiancve
debiancve
CVE-2024-21742
2024-02-27 17:15:12
nvd
nvd
CVE-2024-21742
2024-02-27 17:15:12
cgr
cgr
CVE-2024-21742 vulnerabilities
2024-05-19 03:07:16
redhatcve
redhatcve
CVE-2024-21742
2024-02-28 16:05:39
prion
prion
Input validation
2024-02-27 17:15:00
ubuntucve
ubuntucve
CVE-2024-21742
2024-02-27 00:00:00
cve
cve
CVE-2024-21742
2024-02-27 17:15:12
