VYPR

Maven package

org.mule.runtime/mule

pkg:maven/org.mule.runtime/mule

Vulnerabilities (2)

  • CVE-2019-13116Oct 16, 2019
    affected < 3.8.0fixed 3.8.0

    The MuleSoft Mule Community Edition runtime engine before 3.8 allows remote attackers to execute arbitrary code because of Java Deserialization, related to Apache Commons Collections

  • CVE-2019-15630Aug 30, 2019
    affected >= 3.0.0, <= 4.1.5

    Directory Traversal in APIkit, HTTP connector, and OAuth2 Provider components in MuleSoft Mule Runtime 3.2.0 and higher released before August 1 2019, MuleSoft Mule Runtime 4.1.0 and higher released before August 1 2019, and all versions of MuleSoft API Gateway released before Au