Apache James is an open source Smtp and Pop3 mail transfer agent and Nntp news server written entirely in Java from the Apache Foundation. an elevation of privilege vulnerability exists in Apache James 3.7.3 and prior versions, which stems from the default provisioning of the JMX management service without authentication, which could be exploited by an attacker to vulnerability can be exploited to escalate privileges.
CPE | Name | Operator | Version |
---|---|---|---|
apache apache james | le | 3.7.3 |