CVE-2024-45626
EUVD-2025-497206.02.2025, 12:15
Apache James server JMAP HTML to text plain implementation in versions below 3.8.2 and 3.7.6 is subject to unbounded memory consumption that can result in a denial of service. Users are recommended to upgrade to version 3.7.6 and 3.8.2, which fix this issue.Enginsight
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| apache | james_server | 𝑥 < 3.7.6 |
| apache | james_server | 3.8.0 ≤ 𝑥 < 3.8.2 |
𝑥
= Vulnerable software versions
Early Detection
Affected products identified ahead of NVD analysis through intelligence sources.
| Vendor | Product | Version | Source |
|---|---|---|---|
| apache | james | 3.8.0 ≤ 𝑥 ≤ 3.8.1 | CNA |
| apache | james | 𝑥 ≤ 3.7.5 | CNA |