Lucene search

SalesforceCVELIST:CVE-2021-1627

HistoryMar 26, 2021 - 4:17 p.m.

CVE-2021-1627

2021-03-2616:17:53

Salesforce

www.cve.org

mulesoft

ssrf

vulnerability

runtime

cloudhub

on-premise

mule 3.8.x

mule 3.9.x

mule 4.x

AI Score

9.7

Confidence

High

EPSS

0.002

Percentile

60.7%

JSON

MuleSoft is aware of a Server Side Request Forgery vulnerability affecting certain versions of a Mule runtime component that may affect both CloudHub and on-premise customers. This affects: Mule 3.8.x,3.9.x,4.x runtime released before February 2, 2021.

CNA Affected

[
  {
    "product": "Mulesoft",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "Mule 3.8.x,3.9.x,4.x runtime released before February 2, 2021"
      }
    ]
  }
]

References

help.salesforce.com/articleView?id=000357383&type=1&mode=1