🔐 CVE Alert

CVE-2025-7962

UNKNOWN 0.0
CVSS Score
0.0
EPSS Score
0.8%
EPSS Percentile
50th

In Jakarta Mail versions prior to 2.0.2 it is possible to perform an SMTP Injection by utilizing the \r and \n UTF-8 characters to separate different messages.

CWE CWE-147
Vendor eclipse foundation
Product jakarta mail
Published Jul 21, 2025
Last Updated Jun 23, 2026
Stay Ahead of the Next One

Get instant alerts for eclipse foundation jakarta mail

Be the first to know when new unknown vulnerabilities affecting eclipse foundation jakarta mail are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

Eclipse Foundation / Jakarta Mail
All versions affected

References

NVD ↗ CVE.org ↗ EPSS Data ↗
gitlab.eclipse.org: https://gitlab.eclipse.org/security/cve-assignement/-/issues/67 openwall.com: http://www.openwall.com/lists/oss-security/2025/09/03/4

Credits

🔍 1ue 🔍 blu3r