XML external entity (XXE) vulnerability in Drools and jBPM prior to 6.2.0 allows remote malicious users to read arbitrary files or possibly have other unspecified impact via a crafted BPMN2 file.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
redhat drools |
||
redhat jbpm |