CVE-2013-6468

2014-04-10T20:29:00
ID CVE-2013-6468
Type cve
Reporter cve@mitre.org
Modified 2014-04-11T14:54:00

Description

JBoss Drools, Red Hat JBoss BRMS before 6.0.1, and Red Hat JBoss BPM Suite before 6.0.1 allows remote authenticated users to execute arbitrary Java code via a (1) MVFLEX Expression Language (MVEL) or (2) Drools expression.