CVE-2018-1294

20.03.2018, 17:29

If a user of Apache Commons Email (typically an application programmer) passes unvalidated input as the so-called "Bounce Address", and that input contains line-breaks, then the email details (recipients, contents, etc.) might be manipulated. Mitigation: Users should upgrade to Commons-Email 1.5. You can mitigate this vulnerability for older versions of Commons Email by stripping line-breaks from data, that will be passed to Email.setBounceAddress(String).

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	NIST	7.5 HIGH	NETWORK	LOW	NONE	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
apache	CNA	---				---
CVE	ADP	---				---

Base Score

CVSS 3.x

EPSS Score

Percentile: 52%

Vendor	Product	Version
apache	commons_email	1.0 ≤ 𝑥 ≤ 1.4

𝑥

= Vulnerable software versions

Debian Releases

Debian Product

Codename

commons-email

sid	1.5-3 fixed
trixie	1.5-3 fixed
bookworm	1.5-3 fixed
bullseye	1.5-3 fixed

Ubuntu Releases

Ubuntu Product

Codename

commons-email

cosmic	not-affected
bionic	not-affected
artful	dne
xenial	dne
trusty	dne

Common Weakness Enumeration

CWE-20 - Improper Input Validation
The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

References

http://seclists.org/oss-sec/2018/q1/107