Skip to main content

This content has been archived and is no longer being updated. Links may not function; however, this content may be relevant to outdated versions of the product.

Support Article

EmailListener fails when storing attachments to CloudStorage



The system is configured to store incoming email attachments to the CloudStorage. This fails when the attachment's file name denotes an absolute path or starts with '../' (one level up in the directory tree).

Error Messages

[EMAIL-Thread-16] [STANDARD] [ ] [DMGCS:01.26] ( ERROR
EMAIL.EmailListener.Listener|from([email protected])|sub(test)|Email|
A8D8Z98FU72NIKX71HRIQHYC543MNNKO9 EmailListener - Unable to serve file
java.lang.IllegalArgumentException: Paths may not navigate out of the scope of their
at sun.reflect.GeneratedMethodAccessor131.invoke(Unknown Source) ~[?:?]
at ...

Steps to Reproduce

  1. Configure an EmailListener that stores attachments to the CloudStorage
  2. Compose an email with an attachment whose file name is invalid (patch the *.eml file ...).
  3. Send the email to the inbox that is observed by the EmailListener.

Root Cause

A defect in Pegasystems’ code or rules.
The attachment names of the incoming emails were not verified.


Apply HFix-50227.


Published March 24, 2019 - Updated October 8, 2020

Was this useful?

0% found this useful

Have a question? Get answers now.

Visit the Collaboration Center to ask questions, engage in discussions, share ideas, and help others.

Did you find this content helpful?

Want to help us improve this content?

We'd prefer it if you saw us at our best.

Pega Community has detected you are using a browser which may prevent you from experiencing the site as intended. To improve your experience, please update your browser.

Close Deprecation Notice
Contact us