apache-james-imap-api is vulnerable to information disclosure. The vulnerability exists due to the use of STARTTLS commands which allows an attacker to gain access to sensitive information.
CPE | Name | Operator | Version |
---|---|---|---|
apache james imap api | le | 0.3 | |
apache james imap api | le | 0.3 |
www.openwall.com/lists/oss-security/2022/01/04/1
www.openwall.com/lists/oss-security/2022/09/20/1
github.com/advisories/GHSA-84wg-rgp8-2hg4
github.com/apache/james-project/commit/6263d87f10fd733fc4d7933a24ca7fe21cea7ff
github.com/apache/james-project/pull/596
www.openwall.com/lists/oss-security/2022/01/04/1