Lucene search
K

8 matches found

OSV
OSV
added 2024/04/19 11:7 a.m.4 views

OESA-2024-1476 apache-mime4j security update

Java stream based MIME message parser. Security Fixes: Improper input validation allows for header injection in MIME4J library when using MIME4J DOM for composing message. This can be exploited by an attacker to add unintended headers to MIME messages. CVE-2024-21742...

5.3CVSS7.3AI score0.01082EPSS
Exploits0References2
OSV
OSV
added 2024/04/19 11:7 a.m.3 views

OESA-2024-1475 apache-mime4j security update

Java stream based MIME message parser. Security Fixes: Improper input validation allows for header injection in MIME4J library when using MIME4J DOM for composing message. This can be exploited by an attacker to add unintended headers to MIME messages. CVE-2024-21742...

5.3CVSS7.3AI score0.01082EPSS
Exploits0References2
OSV
OSV
added 2024/04/19 11:7 a.m.4 views

OESA-2024-1478 apache-mime4j security update

Java stream based MIME message parser. Security Fixes: Improper input validation allows for header injection in MIME4J library when using MIME4J DOM for composing message. This can be exploited by an attacker to add unintended headers to MIME messages. CVE-2024-21742...

5.3CVSS7.3AI score0.01082EPSS
Exploits0References2
OSV
OSV
added 2024/03/29 11:7 a.m.3 views

OESA-2024-1333 apache-mime4j security update

Java stream based MIME message parser. Security Fixes: Improper input validation allows for header injection in MIME4J library when using MIME4J DOM for composing message. This can be exploited by an attacker to add unintended headers to MIME messages. CVE-2024-21742...

5.3CVSS7.3AI score0.01082EPSS
Exploits0References2
Veracode
Veracode
added 2024/02/28 8:31 a.m.33 views

Header Injection

org.apache.james: apache-mime4j-core is vulnerable to Header Injection. The vulnerability is due to improper input validation when using MIME4J DOM to compose messages, which allows an attacker to add unintended headers to MIME messages...

5.3CVSS7AI score0.01082EPSS
Exploits0References5Affected Software1
NVD
NVD
added 2024/02/27 5:15 p.m.17 views

CVE-2024-21742

Improper input validation allows for header injection in MIME4J library when using MIME4J DOM for composing message. This can be exploited by an attacker to add unintended headers to MIME messages...

5.3CVSS9.5AI score0.01082EPSS
Exploits0References2
OSV
OSV
added 2024/02/27 5:15 p.m.4 views

UBUNTU-CVE-2024-21742

Improper input validation allows for header injection in MIME4J library when using MIME4J DOM for composing message. This can be exploited by an attacker to add unintended headers to MIME messages...

5.3CVSS7.2AI score0.01082EPSS
Exploits0References6
CVE
CVE
added 2024/02/27 4:21 p.m.8550 views

CVE-2024-21742

CVE-2024-21742: IBM/connected IBM products show a vulnerability due to improper input validation in MIME4J DOM, enabling header injection in MIME messages. Affected: IBM API Connect v12 OnPrem 12.1.0.0 (per IBM bulletin); remediation: upgrade to 12.1.0.1. Other IBM docs also reference this CVE in...

5.3CVSS6.6AI score0.01082EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder