CVEDB API - Fast Vulnerability Dashboard

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-7962

In Jakarta Mail 2.0.2 it is possible to preform a SMTP Injection by utilizing the \r and \n UTF-8 characters to separate different messages.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 11.3%

CVSS Severity

CVSS v3 Score 7.5

References

https://gitlab.eclipse.org/security/cve-assignement/-/issues/67

Products affected by CVE-2025-7962

Eclipse » Jakarta Mail » Version: 1.6.3

cpe:2.3:a:eclipse:jakarta_mail:1.6.3
Eclipse » Jakarta Mail » Version: 1.6.4

cpe:2.3:a:eclipse:jakarta_mail:1.6.4
Eclipse » Jakarta Mail » Version: 1.6.5

cpe:2.3:a:eclipse:jakarta_mail:1.6.5
Eclipse » Jakarta Mail » Version: 1.6.6

cpe:2.3:a:eclipse:jakarta_mail:1.6.6
Eclipse » Jakarta Mail » Version: 1.6.7

cpe:2.3:a:eclipse:jakarta_mail:1.6.7
Eclipse » Jakarta Mail » Version: 2.0.0

cpe:2.3:a:eclipse:jakarta_mail:2.0.0
Eclipse » Jakarta Mail » Version: 2.0.1

cpe:2.3:a:eclipse:jakarta_mail:2.0.1

Products

Pricing

Contact Us

support@shodan.io

Shodan ® - All rights reserved