Unproper laxist permissions on the temporary files used by MIME4J TempFileStorageProvider may lead to information disclosure to other local users. This issue affects Apache James MIME4J version 0.8.8 and prior versions.
We recommend users to upgrade to MIME4j version 0.8.9 or later.
References
Link | Resource |
---|---|
https://lists.apache.org/thread/26s8p9stl1z261c4qw15bsq03tt7t0rj | Mailing List Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: apache
Published: 2023-01-06T09:31:40.118Z
Updated: 2023-01-16T10:27:24.515Z
Reserved: 2022-11-22T08:49:26.227Z
Link: CVE-2022-45787
JSON object: View
NVD Information
Status : Modified
Published: 2023-01-06T10:15:10.383
Modified: 2023-11-07T03:54:49.427
Link: CVE-2022-45787
JSON object: View
Redhat Information
No data.
CWE