CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2019-15630

Directory Traversal in APIkit, HTTP connector, and OAuth2 Provider components in MuleSoft Mule Runtime 3.2.0 and higher released before August 1 2019, MuleSoft Mule Runtime 4.1.0 and higher released before August 1 2019, and all versions of MuleSoft API Gateway released before August 1 2019 allow remote attackers to read files accessible to the Mule process.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.004

EPSS Ranking 61.5%

CVSS Severity

CVSS v3 Score 7.5

CVSS v2 Score 5.0

References

Products affected by CVE-2019-15630

Mulesoft » Api Gateway » Version: N/A

cpe:2.3:a:mulesoft:api_gateway:-
Mulesoft » Api Gateway » Version: 2.2.0

cpe:2.3:a:mulesoft:api_gateway:2.2.0
Mulesoft » Api Gateway » Version: 2.2.1

cpe:2.3:a:mulesoft:api_gateway:2.2.1
Mulesoft » Api Gateway » Version: 2.2.10

cpe:2.3:a:mulesoft:api_gateway:2.2.10
Mulesoft » Api Gateway » Version: 2.2.11

cpe:2.3:a:mulesoft:api_gateway:2.2.11
Mulesoft » Api Gateway » Version: 2.2.12

cpe:2.3:a:mulesoft:api_gateway:2.2.12
Mulesoft » Api Gateway » Version: 2.2.2

cpe:2.3:a:mulesoft:api_gateway:2.2.2
Mulesoft » Api Gateway » Version: 2.2.3

cpe:2.3:a:mulesoft:api_gateway:2.2.3
Mulesoft » Api Gateway » Version: 2.2.4

cpe:2.3:a:mulesoft:api_gateway:2.2.4
Mulesoft » Api Gateway » Version: 2.2.5

cpe:2.3:a:mulesoft:api_gateway:2.2.5
Mulesoft » Api Gateway » Version: 2.2.6

cpe:2.3:a:mulesoft:api_gateway:2.2.6
Mulesoft » Api Gateway » Version: 2.2.7

cpe:2.3:a:mulesoft:api_gateway:2.2.7
Mulesoft » Api Gateway » Version: 2.2.8

cpe:2.3:a:mulesoft:api_gateway:2.2.8
Mulesoft » Api Gateway » Version: 2.2.9

cpe:2.3:a:mulesoft:api_gateway:2.2.9
Mulesoft » Mule Runtime » Version: 3.2.0

cpe:2.3:a:mulesoft:mule_runtime:3.2.0
Mulesoft » Mule Runtime » Version: 3.8.0

cpe:2.3:a:mulesoft:mule_runtime:3.8.0
Mulesoft » Mule Runtime » Version: 3.8.1

cpe:2.3:a:mulesoft:mule_runtime:3.8.1
Mulesoft » Mule Runtime » Version: 3.8.2

cpe:2.3:a:mulesoft:mule_runtime:3.8.2
Mulesoft » Mule Runtime » Version: 3.8.3

cpe:2.3:a:mulesoft:mule_runtime:3.8.3
Mulesoft » Mule Runtime » Version: 3.8.4

cpe:2.3:a:mulesoft:mule_runtime:3.8.4
Mulesoft » Mule Runtime » Version: 3.8.5

cpe:2.3:a:mulesoft:mule_runtime:3.8.5
Mulesoft » Mule Runtime » Version: 3.8.6

cpe:2.3:a:mulesoft:mule_runtime:3.8.6
Mulesoft » Mule Runtime » Version: 3.8.7

cpe:2.3:a:mulesoft:mule_runtime:3.8.7
Mulesoft » Mule Runtime » Version: 3.9.0

cpe:2.3:a:mulesoft:mule_runtime:3.9.0
Mulesoft » Mule Runtime » Version: 3.9.1

cpe:2.3:a:mulesoft:mule_runtime:3.9.1
Mulesoft » Mule Runtime » Version: 3.9.2

cpe:2.3:a:mulesoft:mule_runtime:3.9.2
Mulesoft » Mule Runtime » Version: 3.9.3

cpe:2.3:a:mulesoft:mule_runtime:3.9.3
Mulesoft » Mule Runtime » Version: 4.1.0

cpe:2.3:a:mulesoft:mule_runtime:4.1.0
Mulesoft » Mule Runtime » Version: 4.1.1

cpe:2.3:a:mulesoft:mule_runtime:4.1.1
Mulesoft » Mule Runtime » Version: 4.1.2

cpe:2.3:a:mulesoft:mule_runtime:4.1.2
Mulesoft » Mule Runtime » Version: 4.1.3

cpe:2.3:a:mulesoft:mule_runtime:4.1.3
Mulesoft » Mule Runtime » Version: 4.1.3.1

cpe:2.3:a:mulesoft:mule_runtime:4.1.3.1
Mulesoft » Mule Runtime » Version: 4.1.3.2

cpe:2.3:a:mulesoft:mule_runtime:4.1.3.2
Mulesoft » Mule Runtime » Version: 4.1.4

cpe:2.3:a:mulesoft:mule_runtime:4.1.4
Mulesoft » Mule Runtime » Version: 4.1.5

cpe:2.3:a:mulesoft:mule_runtime:4.1.5
Mulesoft » Mule Runtime » Version: 4.1.6

cpe:2.3:a:mulesoft:mule_runtime:4.1.6
Mulesoft » Mule Runtime » Version: 4.2.0

cpe:2.3:a:mulesoft:mule_runtime:4.2.0
Mulesoft » Mule Runtime » Version: 4.2.1

cpe:2.3:a:mulesoft:mule_runtime:4.2.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2019-15630

Products

Pricing

Contact Us