Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

EUVD
EUVDadded 2025/10/03 8:7 p.m.3 views

EUVD-2023-0529

Malicious code in bioql PyPI...

5.5CVSS5.8AI score0.00009EPSS
Exploits0References6
RedHat Linux
RedHat Linuxadded 2023/05/10 11:59 a.m.3 views

apache-james-mime4j: Temporary File Information Disclosure in MIME4J TempFileStorageProvider

A flaw was found in Apache James's Mime4j TempFileStorageProvider class, where it may set improper permissions when utilizing temporary files. This flaw allows a locally authorized attacker to access information outside their intended permissions...

5.5CVSS7.1AI score0.00009EPSS
Exploits0References4
RedHat Linux
RedHat Linuxadded 2023/03/29 11:45 a.m.3 views

apache-james-mime4j: Temporary File Information Disclosure in MIME4J TempFileStorageProvider

A flaw was found in Apache James's Mime4j TempFileStorageProvider class, where it may set improper permissions when utilizing temporary files. This flaw allows a locally authorized attacker to access information outside their intended permissions...

5.5CVSS7.1AI score0.00009EPSS
Exploits0References4
RedhatCVE
RedhatCVEadded 2023/03/14 7:43 p.m.48 views

CVE-2022-45787

A flaw was found in Apache James's Mime4j TempFileStorageProvider class, where it may set improper permissions when utilizing temporary files. This flaw allows a locally authorized attacker to access information outside their intended permissions...

5.5CVSS5.4AI score0.00009EPSS
Exploits0References3
CNVD
CNVDadded 2023/01/11 12:0 a.m.25 views

Apache James licensing issue vulnerability

Apache James is an open source Smtp and Pop3 mail transfer agent and Nntp news server written entirely in Java from the Apache Foundation in the U.S. An authorization issue vulnerability exists in Apache James, which stems from a vulnerability in the MIME4J TempFileStorageProvider using improperl...

5.5CVSS2AI score0.00009EPSS
Exploits0References1
Veracode
Veracodeadded 2023/01/08 3:34 a.m.29 views

Information Disclosure

apache-mime4j-storage is vulnerable to Information Disclosure. The vulnerability exists due to insecure default temporary file configuration in the createStorageOutputStream function in TempFileStorageProvider.java, which creates a file with the permissions -rw-r--r--, allowing an attacker to rea...

5.5CVSS5.7AI score0.00009EPSS
Exploits0References5Affected Software23
Prion
Prionadded 2023/01/06 10:15 a.m.20 views

Information disclosure

Unproper laxist permissions on the temporary files used by MIME4J TempFileStorageProvider may lead to information disclosure to other local users. This issue affects Apache James MIME4J version 0.8.8 and prior versions. We recommend users to upgrade to MIME4j version 0.8.9 or later...

1.7CVSS6AI score0.00009EPSS
Exploits0References1Affected Software1
Cvelist
Cvelistadded 2023/01/06 9:31 a.m.24 views

CVE-2022-45787 Apache James MIME4J: Temporary File Information Disclosure in MIME4J TempFileStorageProvider

Unproper laxist permissions on the temporary files used by MIME4J TempFileStorageProvider may lead to information disclosure to other local users. This issue affects Apache James MIME4J version 0.8.8 and prior versions. We recommend users to upgrade to MIME4j version 0.8.9 or later...

5.7AI score0.00009EPSS
Exploits0References1
Rows per page
Query Builder