app.tozzi:pec-parser (>=5.0.0 <=5.1.2), at.datenwort.commons:smtp4j (>=1.0.1 <=1.0.8) +2135 more potentially affected by CVE-2025-7962 via org.eclipse.angus:angus-mail (>=2.0.0 <=2.0.3)

org.eclipse.angus:angus-mail MAVEN version =2.0.0, =5.0.0, =1.0.1, =1.0.1, =1.1.16, =1.0.1, =1.1.17, =29.v7c3891a434c3, =7.6.0, =7.6.0, =7.6.0, =7.6.0, =7.6.0, =7.6.0, =7.6.0, =8.2.2 and more Source cves: CVE-2025-7962 Source advisory: SNYK:JAVA-ORGECLIPSEANGUS-12239873...

Improper Neutralization

Overview Affected versions of this package are vulnerable to Improper Neutralization via the handling of SMTP message input. An attacker can inject arbitrary SMTP commands by supplying specially crafted input containing carriage return and line feed characters. Remediation Upgrade...

Improper Neutralization

Overview org.eclipse.angus:angus-mail is an Angus Mail Provider. Affected versions of this package are vulnerable to Improper Neutralization via the handling of SMTP message input. An attacker can inject arbitrary SMTP commands by supplying specially crafted input containing carriage return and...

com.blazebit:blaze-notify-channel-smtp (=1.0.0-Alpha6), com.blazebit:blaze-notify-server (=1.0.0-Alpha6) +21 more potentially affected by CVE-2025-7962 via org.eclipse.angus:smtp (>=1.0.0-M1 <=2.0.3)

org.eclipse.angus:smtp MAVEN version =1.0.0-M1, =1.0.0, =1.1.0, =1.1.0, =1.1.0, =1.1.0, =1.1.0, =1.1.0, =1.1.0, =1.1.7 and more Source cves: CVE-2025-7962 Source advisory: OSV:GHSA-9342-92GG-6V29...

angus-mail: Enabling Secure Server Identity Checks for Safer SMTPS Communication

A vulnerability was found in Apache Sling Commons Messaging Mailangus-mail, which provides a simple interface for sending emails via SMTPS in OSGi, does not offer an option to enable server identity checks, leaving connections vulnerable to "man-in-the-middle" attacks and can allow insecure email...

angus-mail: Enabling Secure Server Identity Checks for Safer SMTPS Communication

A vulnerability was found in Apache Sling Commons Messaging Mailangus-mail, which provides a simple interface for sending emails via SMTPS in OSGi, does not offer an option to enable server identity checks, leaving connections vulnerable to "man-in-the-middle" attacks and can allow insecure email...

angus-mail: Enabling Secure Server Identity Checks for Safer SMTPS Communication

A vulnerability was found in Apache Sling Commons Messaging Mailangus-mail, which provides a simple interface for sending emails via SMTPS in OSGi, does not offer an option to enable server identity checks, leaving connections vulnerable to "man-in-the-middle" attacks and can allow insecure email...

angus-mail: Enabling Secure Server Identity Checks for Safer SMTPS Communication

A vulnerability was found in Apache Sling Commons Messaging Mailangus-mail, which provides a simple interface for sending emails via SMTPS in OSGi, does not offer an option to enable server identity checks, leaving connections vulnerable to "man-in-the-middle" attacks and can allow insecure email...

Critical: Red Hat Security Advisory: Red Hat build of Quarkus 3.2.12.SP1 Security Update

An update is now available for Red Hat build of Quarkus. Red Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability. For more information...

angus-mail: Enabling Secure Server Identity Checks for Safer SMTPS Communication

A vulnerability was found in Apache Sling Commons Messaging Mailangus-mail, which provides a simple interface for sending emails via SMTPS in OSGi, does not offer an option to enable server identity checks, leaving connections vulnerable to "man-in-the-middle" attacks and can allow insecure email...

Critical: Red Hat Security Advisory: Red Hat build of Quarkus 3.8.6.SP1 Security Update

An update is now available for Red Hat build of Quarkus. Red Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability. For more information...