CVE-2025-7962

Published: Jul 21, 2025
Updated: Aug 15, 2025
CVE: <a href="https://nvd.nist.gov/vuln/detail/CVE-2025-7962" target="_blank" rel="noopener"> CVE-2025-7962
GHSA: <a href="https://github.com/advisories/GHSA-9342-92gg-6v29" target="_blank" rel="noopener"> GHSA-9342-92gg-6v29
Severity: Medium
Exploit:

In Jakarta Mail 2.0.2 it is possible to preform a SMTP Injection by utilizing the \r and \n UTF-8 characters to separate different messages.

CVSS v3:

CWEs:

Vulnerability Database