Every CVE whose affected-product data names Apache Commons Email, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2017-9801 — CVSS 7.5 (high): When a call-site passes a subject for an email that contains line-breaks in Apache Commons Email 1.0 through 1.4, the caller can add…
CVE-2018-1294 — CVSS 7.5 (high): If a user of Apache Commons Email (typically an application programmer) passes unvalidated input as the so-called "Bounce Address", and…