Page 2 of 11 results (0.003 seconds)
CVSS: 6.5EPSS: 0%CPEs: 3EXPL: 0
CVSS: 6.5EPSS: 0%CPEs: 3EXPL: 0CVE-2013-6468 – Drools: Remote Java Code Execution in MVEL
https://notcve.org/view.php?id=CVE-2013-6468
03 Apr 2014 — JBoss Drools, Red Hat JBoss BRMS before 6.0.1, and Red Hat JBoss BPM Suite before 6.0.1 allows remote authenticated users to execute arbitrary Java code via a (1) MVFLEX Expression Language (MVEL) or (2) Drools expression. JBoss Drools, Red Hat JBoss BRMS anterior a 6.0.1 y Red Hat JBoss BPM Suite anterior a 6.0.1 permite a usuarios remotos autenticados ejecutar código Java arbitrario a través de una expresión (1) MVFLEX Expression Language (MVEL) o (2) Drools Red Hat JBoss BPM Suite is a business rules man... • http://rhn.redhat.com/errata/RHSA-2014-0371.html • CWE-94: Improper Control of Generation of Code ('Code Injection') •