Redhat: >> Jboss Drools Security Vulnerabilities
Drools Workbench contains a path traversal vulnerability. The vulnerability allows a remote, authenticated attacker to bypass the directory restrictions and retrieve arbitrary files from the affected host.
CVSS Score
6.5
EPSS Score
0.01
Published
2018-09-10
JBoss Drools, Red Hat JBoss BRMS before 6.0.1, and Red Hat JBoss BPM Suite before 6.0.1 allows remote authenticated users to execute arbitrary Java code via a (1) MVFLEX Expression Language (MVEL) or (2) Drools expression.
CVSS Score
6.5
EPSS Score
0.005
Published
2014-04-10