CVE-2022-22931

Fix of CVE-2021-40525 do not prepend delimiters upon valid directory validations. Affected implementations include: - maildir mailbox store - Sieve file repository This enables a user to access other users data stores (limited to user names being prefixed by the value of the username being used).

Published: Feb 7, 2022
Updated: May 9, 2024
CVE: CVE-2022-22931
GHSA: GHSA-v84g-cf5j-xjqx
Severity: Low
Exploit:

CVSS v3:

Severity: Low
Score: 4.3
AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

CVSS v2:

Severity: Low
Score: 4
AV:N/AC:L/Au:S/C:P/I:N/A:N

CWEs:

CWE-22

OWASP TOP 10:

A5 - Broken Access Control

Affected Software
References

Software	From	Fixed in
apache / james	3.6.1	3.6.1.x
org.apache.james / james-server	-	3.6.2

https://github.com/apache/james-project/pull/877
https://github.com/apache/james-project/pull/877/commits/b1e891a9e5eeadfa1d779ae50f21c73efe4d2fc7
https://lists.apache.org/thread/bp8yql4wws56jlh0vxoowj7foothsmpr
https://www.openwall.com/lists/oss-security/2022/02/07/1

Vulnerability Database

289,697

CVE-2022-22931