Path traversal in Apache James 3.6.1
CVE-2022-22931

4.3MEDIUM

Key Information:

Vendor: Apache
Status: Apache James
Vendor: CVE Published:; 7 February 2022

Summary

Fix of CVE-2021-40525 do not prepend delimiters upon valid directory validations. Affected implementations include: - maildir mailbox store - Sieve file repository This enables a user to access other users data stores (limited to user names being prefixed by the value of the username being used).

Affected Version(s)

Apache James Apache James 3.6.1

References

https://lists.apache.org/thread/bp8yql4wws56jlh0vxoowj7fo...

x_refsource_MISC

https://www.openwall.com/lists/oss-security/2022/02/07/1

x_refsource_MISC

CVSS V3.1

Score:

4.3

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

None

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Feb 7, 2022
Vulnerability Reserved
Jan 10, 2022

Credit

These issues were discovered and reported by GHSL team member Jaroslav Lobačevski