Redhat » Jboss Drools : Security Vulnerabilities, CVEs,
Drools Workbench contains a path traversal vulnerability. The vulnerability allows a remote, authenticated attacker to bypass the directory restrictions and retrieve arbitrary files from the affected host.
Max CVSS
6.8
EPSS Score
0.39%
Published
2018-09-10
Updated
2023-02-12
JBoss Drools, Red Hat JBoss BRMS before 6.0.1, and Red Hat JBoss BPM Suite before 6.0.1 allows remote authenticated users to execute arbitrary Java code via a (1) MVFLEX Expression Language (MVEL) or (2) Drools expression.
Max CVSS
6.5
EPSS Score
0.29%
Published
2014-04-10
Updated
2014-04-11
2 vulnerabilities found