CVE-2024-21742

Improper input validation allows for header injection in MIME4J library when using MIME4J DOM for composing message. This can be exploited by an attacker to add unintended headers to MIME messages.

CVSS

No CVSS.

References

Link	Resource
http://www.openwall.com/lists/oss-security/2024/02/27/5
https://lists.apache.org/thread/nrqzg93219wdj056pqfszsd33dc54kfy

Configurations

No configuration.

History

29 Feb 2024, 01:44

Type	Values Removed	Values Added
References		() http://www.openwall.com/lists/oss-security/2024/02/27/5 -

28 Feb 2024, 14:06

Type	Values Removed	Values Added
Summary		(es) La validación de entrada incorrecta permite la inyección de encabezado en la librería MIME4J cuando se usa MIME4J DOM para redactar mensajes. Un atacante puede aprovechar esto para agregar encabezados no deseados a los mensajes MIME.

27 Feb 2024, 17:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2024-02-27 17:15

Updated : 2024-02-29 01:44

NVD link : CVE-2024-21742

Mitre link : CVE-2024-21742

CVE.ORG link : CVE-2024-21742

JSON object : View

Products Affected

No product.

CWE

CWE-20

Improper Input Validation

JSON object

Attach tags to CVE-2024-21742

Attach tags to `CVE-2024-21742`