Lucene search
+L

28 matches found

cve
cve
added 2021/03/26 4:17 p.m.172 views

CVE-2021-1627

CVE-2021-1627 affects MuleSoft Mule runtime components (CloudHub and on‑premise) with SSRF in Mule 3.8.x, 3.9.x, and 4.x released before 2021-02-02. Documented impact per CVSS metrics: CVSS2 base 7.5 (HIGH) and CVSS3.1 base 9.8 (CRITICAL) with network attack vector, no authentication, and partial...

9.8CVSS9.4AI score0.01043EPSS
Exploits0References1Affected Software1
cvelist
cvelist
added 2021/03/26 4:17 p.m.24 views

CVE-2021-1626

MuleSoft is aware of a Remote Code Execution vulnerability affecting certain versions of a Mule runtime component that may affect both CloudHub and on-premise customers. Versions affected: Mule 4.1.x and 4.2.x runtime released before February 2, 2021...

9.9AI score0.02031EPSS
Exploits0References1
cnnvd
cnnvd
added 2021/03/26 12:0 a.m.5 views

MuleSoft Mule 代码问题漏洞

Mulesoft MuleSoft Mule is a lightweight integration platform from the US company MuleSoft Mulesoft. The platform supports management of message routing between nodes, data mapping, and more. A security vulnerability exists in MuleSoft Mule 4.x runtime released before February 2, 2021, which...

9.8CVSS8.3AI score0.01198EPSS
Exploits0References2
cnnvd
cnnvd
added 2021/03/26 12:0 a.m.4 views

MuleSoft Mule 代码问题漏洞

Mulesoft MuleSoft Mule is a lightweight integration platform from the US company MuleSoft Mulesoft. The platform supports management of message routing between nodes, data mapping, and more. A code issue vulnerability exists in MuleSoft Mule, which originates in the Mule runtime component. The...

9.8CVSS8.4AI score0.01043EPSS
Exploits0References2
nvd
nvd
added 2019/08/30 5:15 p.m.15 views

CVE-2019-15630

Directory Traversal in APIkit, HTTP connector, and OAuth2 Provider components in MuleSoft Mule Runtime 3.2.0 and higher released before August 1 2019, MuleSoft Mule Runtime 4.1.0 and higher released before August 1 2019, and all versions of MuleSoft API Gateway released before August 1 2019 allow...

7.5CVSS7.5AI score0.02998EPSS
Exploits0References1
prion
prion
added 2019/08/30 5:15 p.m.13 views

Directory traversal

Directory Traversal in APIkit, HTTP connector, and OAuth2 Provider components in MuleSoft Mule Runtime 3.2.0 and higher released before August 1 2019, MuleSoft Mule Runtime 4.1.0 and higher released before August 1 2019, and all versions of MuleSoft API Gateway released before August 1 2019 allow...

5CVSS7.4AI score0.02998EPSS
Exploits0References1Affected Software1
cvelist
cvelist
added 2019/08/30 4:56 p.m.18 views

CVE-2019-15630

Directory Traversal in APIkit, HTTP connector, and OAuth2 Provider components in MuleSoft Mule Runtime 3.2.0 and higher released before August 1 2019, MuleSoft Mule Runtime 4.1.0 and higher released before August 1 2019, and all versions of MuleSoft API Gateway released before August 1 2019 allow...

7.5AI score0.02998EPSS
Exploits0References1
cve
cve
added 2019/08/30 4:56 p.m.364 views

CVE-2019-15630

CVE-2019-15630 describes a directory traversal vulnerability affecting MuleSoft products: APIkit, HTTP connector, and OAuth2 Provider components in Mule Runtime 3.x/4.x and all MuleSoft API Gateway versions released before August 1, 2019. The issue permits remote attackers to read files accessibl...

7.5CVSS7.4AI score0.02998EPSS
Exploits0References1Affected Software2
Rows per page
Query Builder