JBoss Drools, Red Hat JBoss BRMS before 6.0.1, and Red Hat JBoss BPM Suite before 6.0.1 allows remote authenticated users to execute arbitrary Java code via a (1) MVFLEX Expression Language (MVEL) or (2) Drools expression.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: redhat

Published: 2014-04-10T14:00:00

Updated: 2024-08-06T17:39:01.441Z

Reserved: 2013-11-04T00:00:00

Link: CVE-2013-6468

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2014-04-10T20:29:20.393

Modified: 2024-11-21T01:59:17.390

Link: CVE-2013-6468

cve-icon Redhat

Severity : Important

Publid Date: 2014-04-03T00:00:00Z

Links: CVE-2013-6468 - Bugzilla