QwikSec

Security Database

CVE

CWE

Training

CVE Database
/

CVE-2013-6468

Back to search

CVE-2013-6468

Published: Apr 10, 2014

Modified: Aug 6, 2024

PUBLISHED

Description

JBoss Drools, Red Hat JBoss BRMS before 6.0.1, and Red Hat JBoss BPM Suite before 6.0.1 allows remote authenticated users to execute arbitrary Java code via a (1) MVFLEX Expression Language (MVEL) or (2) Drools expression.

VendorProductVersions

n/a

n/a

affected
n/a

References

RHSA-2014:0371
vendor-advisory
x_refsource_REDHAT
57719
third-party-advisory
x_refsource_SECUNIA
57716
third-party-advisory
x_refsource_SECUNIA
RHSA-2014:0372
vendor-advisory
x_refsource_REDHAT

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now