JBoss Drools, Red Hat JBoss BRMS prior to 6.0.1, and Red Hat JBoss BPM Suite prior to 6.0.1 allows remote authenticated users to execute arbitrary Java code via a (1) MVFLEX Expression Language (MVEL) or (2) Drools expression.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
redhat jboss enterprise brms platform 6.0.0 |
||
redhat jboss bpm suite 6.0.0 |
||
redhat jboss drools - |