5 matches found
org.apache.james.examples:custom-james-assembly (>=3.7.0 <=3.7.5), org.apache.james:apache-james (=3.0-beta4) +22 more potentially affected by CVE-2024-37358 via org.apache.james:james-server-protocols-imap4 (>=3.0-beta4 <=3.7.5)
org.apache.james:james-server-protocols-imap4 MAVEN version =3.0-beta4, =3.7.0, =3.0.0, =3.4.0, =3.0.0, =3.7.0, =3.0.0, =3.0.0, =3.3.0, =3.3.0, =3.7.0, =3.7.0, =3.0.0, =3.7.5 and more Source cves: CVE-2024-37358 Source advisory: SNYK:JAVA-ORGAPACHEJAMES-8689864...
org.apache.james.examples:custom-imap (>=3.8.0 <=3.8.1), org.apache.james.examples:custom-james-assembly (>=3.8.0 <=3.8.1) +15 more potentially affected by CVE-2024-37358 via org.apache.james.protocols:protocols-imap (>=3.8.0 <=3.8.1)
org.apache.james.protocols:protocols-imap MAVEN version =3.8.0, =3.8.0, =3.8.0, =3.8.0, =3.8.0, =3.8.0, =3.8.0, =3.8.0, =3.8.0, =3.8.0, =3.8.0, =3.8.0, =3.8.0, =3.8.0, =3.8.0, =3.8.0, =3.8.1 and more Source cves: CVE-2024-37358 Source advisory: OSV:GHSA-56JP-W6VW-J3JW...
org.apache.james.examples:custom-james-assembly (>=3.7.0 <=3.7.5), org.apache.james:apache-james-mpt-antlib (>=3.0.0 <=3.0.1) +31 more potentially affected by CVE-2024-37358 via org.apache.james.protocols:protocols-imap (>=3.0.0-RC1 <=3.7.5)
org.apache.james.protocols:protocols-imap MAVEN version =3.0.0-RC1, =3.7.0, =3.0.0, =3.0.0, =3.0.0, =3.0.0, =3.0.0, =3.0.0, =3.0.0, =3.4.0, =3.0.0, =3.0.0, =3.7.0, =3.0.0, =3.0.0, =3.6.2 and more Source cves: CVE-2024-37358 Source advisory: OSV:GHSA-56JP-W6VW-J3JW...
CVE-2024-37358 Apache James: denial of service through the use of IMAP literals
Similarly to CVE-2024-34055, Apache James is vulnerable to denial of service through the abuse of IMAP literals from both authenticated and unauthenticated users, which could be used to cause unbounded memory allocation and very long computations Version 3.7.6 and 3.8.2 restrict such illegitimate...
CVE-2024-37358
creationtimestamp| type| source ---|---|--- 2025-02-05 17:55:09+00:00| seen| https://bsky.app/profile/infosec.skyfleet.blue/post/3lhh5drseez2u 2025-02-06 11:29:20+00:00| seen| https://infosec.exchange/users/cve/statuses/113956707363822061 2025-02-06 12:16:23+00:00| seen|...