← Back to CVEs
CVE-2013-6468
N/ADescription
JBoss Drools, Red Hat JBoss BRMS before 6.0.1, and Red Hat JBoss BPM Suite before 6.0.1 allows remote authenticated users to execute arbitrary Java code via a (1) MVFLEX Expression Language (MVEL) or (2) Drools expression.
CVE Details
CVSS v3.1 ScoreN/A
Published4/10/2014
Last Modified4/12/2025
Sourcenvd
Honeypot Sightings0
Affected Products
redhat:jboss_bpm_suiteredhat:jboss_droolsredhat:jboss_enterprise_brms_platform
Weaknesses (CWE)
CWE-94
References
http://rhn.redhat.com/errata/RHSA-2014-0371.html(secalert@redhat.com)
http://rhn.redhat.com/errata/RHSA-2014-0372.html(secalert@redhat.com)
http://secunia.com/advisories/57716(secalert@redhat.com)
http://secunia.com/advisories/57719(secalert@redhat.com)
http://rhn.redhat.com/errata/RHSA-2014-0371.html(af854a3a-2127-422b-91ae-364da2661108)
http://rhn.redhat.com/errata/RHSA-2014-0372.html(af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/57716(af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/57719(af854a3a-2127-422b-91ae-364da2661108)
IOC Correlations
No correlations recorded
This product uses data from the NVD API but is not endorsed or certified by the NVD.