Apache James_server
2 CVEs affecting Apache James_server. Latest disclosed: 2017-10-20. Critical: 0, High: 2.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2015-7611 | High | 8.1 | 2016-06-07 | Apache James Server 2.3.2, when configured with file-based user repositories, allows attackers to execute arbitrary system commands via unspecified vectors. |
CVE-2017-12628 | High | 7.8 | 2017-10-20 | The JMX server embedded in Apache James, also used by the command line client is exposed to a java de-serialization issue, and thus can be used to execute arbi… |