Search for packages
| purl | pkg:maven/org.apache.james/javax-mail-extension@3.6.0 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-tbyy-yemg-g7bk
Aliases: CVE-2023-26269 GHSA-w7r6-v4j7-h94w |
Apache James server's JMX management service vulnerable to privilege escalation by local user Apache James server version 3.7.3 and earlier provides a JMX management service without authentication by default. This allows privilege escalation by a malicious local user. Administrators are advised to disable JMX, or set up a JMX password. Note that version 3.7.4 onward will set up a JMX password automatically for Guice users. |
Affected by 0 other vulnerabilities. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| This package is not known to fix vulnerabilities. | ||
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2026-04-16T22:26:10.317188+00:00 | GitLab Importer | Affected by | VCID-tbyy-yemg-g7bk | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.james/javax-mail-extension/CVE-2023-26269.yml | 38.4.0 |
| 2026-04-11T23:44:25.310897+00:00 | GitLab Importer | Affected by | VCID-tbyy-yemg-g7bk | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.james/javax-mail-extension/CVE-2023-26269.yml | 38.3.0 |
| 2026-04-02T23:48:05.688042+00:00 | GitLab Importer | Affected by | VCID-tbyy-yemg-g7bk | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.james/javax-mail-extension/CVE-2023-26269.yml | 38.1.0 |
| 2026-04-01T18:11:24.444459+00:00 | GitLab Importer | Affected by | VCID-tbyy-yemg-g7bk | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.james/javax-mail-extension/CVE-2023-26269.yml | 38.0.0 |